Latest Email Worm Targets SCO.By Kevin Murphy There are many people named Kevin Murphy:
Anti-virus companies warned yesterday of a high-distribution email virus See e-mail virus. that was spreading fast and delivering a payload designed to target The SCO Group The SCO Group, Inc. (TSG, informally SCO; NASDAQ: SCOX) is a software company formerly called Caldera Systems and Caldera International. After acquiring the Santa Cruz Operation's Server Software and Services divisions, as well as UnixWare and Inc's web site with a denial of service attack An assault on a network that floods it with so many additional requests that regular traffic is either slowed or completely interrupted. Unlike a virus or worm, which can cause severe damage to databases, a denial of service attack interrupts network service for some period. . The mass mailing Windows worm, known variously as MyDoom, MiMail.R, Novarg and Shimg, emerged yesterday afternoon US Pacific Time, and started spreading as fast or faster than Klez, Code Red, Nimda, and other recent successful viruses. At press time yesterday, anti-virus experts only had a rough idea of what MyDoom does and why it spread so quickly. It appears to be a regular mass-mailer, which requires the recipient to open a Zip file (1) A file that contains one or more files that have been compressed into the ZIP format. Also called a "ZIP archive," "zipped file" or "zipped archive," the ZIP algorithm is the most popular compression method in use. Not Just the . and run an executable to become infected. "We are still working on it, but based on what we've observed so far it definitely seems to have a component that does a denial-of-service attack "DoS" redirects here. For other uses, see DOS (disambiguation). A denial-of-service attack (DoS attack) is an attempt to make a computer resource unavailable to its intended users. against the SCO (The SCO Group, Lindon, UT, www.sco.com) A leading vendor of Unix operating systems for the x86 platform. SCO had also offered Linux, but abandoned the line in the spring of 2003. The SCO Group is the combination of two companies: Utah-based Caldera, Inc. .com web site," said Brian Dunphy, director of global analysis for Symantec Corp. SCO has become the target of many denial-of-service attacks over recent months due to its aggressive litigation An action brought in court to enforce a particular right. The act or process of bringing a lawsuit in and of itself; a judicial contest; any dispute. When a person begins a civil lawsuit, the person enters into a process called litigation. campaign. The company is trying to enforce software copyright over the Linux operating system, annoying many developers. "If it is is having any kind of impact, it's still in its infancy," said a SCO spokesperson. "We do have experience on our side, but unfortunately if a denial-of-service attack is taking place there's not a great deal you can do to prevent it from happening." Once run, the worm seeks also out email addresses from the victim's hard drive, forwards itself, and copies itself to the Kazaa shared files folder if the PC has the Kazaa file-sharing application installed. There appears to be no other infection mechanism, which raises questions about how it could spread as fast as the Nimdas and Code Reds of the world, which required no user intervention to leap from machine to machine. The body text of the MyDoom email looks like an error message, and the executable attachment is Zip-compressed and made to look like a text file. "Possibly people are not as trained to not open up and run Zip files as they are other types of files," Dunphy said. At press time last night the full picture of whether MyDoom will cause serious damage, or is just another flash-in-the-pan worm-du-jour, was not yet obvious. All the anti-virus companies had given the virus their highest or second-highest ratings. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion