ELM Bulletin - June
6, 2005
MYTOB worm
Techtree.com (http://www.techtree.com) has released the following warning with respect the MYTOB worm, a new computer virus worm now in circulation.
Sophos, the virus and spam analysis center, has reported that the Mytob
worm currently accounts for more than half of the top twenty viruses.
One of the most widespread
variants - Mytob-CM - was first seen on Friday, 27 May and the Mytob worm
reports to Sophos in the last 48 hours, represents 42.9% of all virus
reports.
Mytob-CM spreads via email in an infected attachment. It purports to warn users of security or account issues in its subject line, such as *DETECTED* Online User Violation, Your Email Account is Suspended For Security Reasons and Account Alert.
When the infected attachment is launched, Mytob-CM attempts to turn off security applications and deny access to many popular security websites. It also attempts to open a backdoor onto the computer, allowing unauthorized and remote users to access the system.
Carole Theriault, security consultant, Sophos, stated that not only do these side-effects make it more difficult for recipients to get assistance from security experts, the open backdoor and lack of security also leaves infected users open to a whole host of other attacks.
As always, please do not hesitate to contact me if you have any questions about this or any other issue.
Past issues of the ELM Bulletin are available from our website, feel free to forward them to anyone you wish.
You have received this ELM Bulletin either by request or because you have given your contact information to an ELM employee. If you no longer wish to receive the ELM Bulletin, send us an email with "Remove Me" in the subject line and we will remove your email address from our distribution list.
Peter Rhebergen Telephone |
Websites & Publications Product Websites |
.jpg)
