- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
PC users are being spoiled rotten this year: another piece of malware purporting to be a message from Santa is delivering surprise gifts over the Internet disguised in an electronic greetings card.
The Trojan horse "MerryX.A" is delivered in an e-mail which encourages the recipient to open an attached "animation." While the animation of Santa Claus delivering presents plays, a piece of malware hiding behind the name "SQLServer.exe" is installed on PCs running Windows, according to security staff at Panda Software's PandaLabs.
The software transmits information about the infected computer to a remote server, and then attempts to download files, which could include other malware, Panda said.
Earlier this week, security researchers identified an IM worm, IM.GiftCom.All . Once it has infected a computer, the worm searches the contact databases of installed IM applications, and sends messages to the contacts it finds, encouraging them to visit a Web site. If the recipients click on the link, the Web site attempts to download another piece of malware to infect their PCs, which in turn spread the message further.
The end-of-year holidays provide plenty of opportunities for malware writers to hone their social-engineering skills, as Internet users are unsurprised to receive brief messages with a seasonal theme from long-lost friends or distant business contacts.
This time last year, someone modified the Zafi e-mail worm to spread itself in a message entitled "Merry Christmas."
As at any other time of year, security researchers advise users that the best defense is to check out unsolicited attachments or Web links with the purported sender before opening or clicking on them.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
Santa delivers more Christmas malwareBy Anonymous on February 27, 2007, 2:07 pmGreat article. How do we get rid of the nasty thing?
Reply | Read entire comment
View all comments