Will the Storm Ever End?
As explained in a recent article at TechShout, the Storm Worm email virus, which first attacked in January 2007, tries to trick recipients into opening an executable attachment file that can hijack their computers. Security companies have said that Storm Worm has managed to quickly drive global virus levels 60 times higher than their daily average.
Once installed on a personal computer, Storm Worm takes control of the machine by adding the infected Windows PC to a “bot army” of compromised computers that are connected to a custom peer-to-pear network where it can download new updates, upload personal information from the compromised computer, and scan e-mail addresses to send out spam to further the attacks.
According to Adam Swidler, senior manager of solutions marketing at security firm Postini, the virus can be detected by up-to-date antivirus software. Its spread can be controlled by most Internet providers using up-to-date virus filters. These filters should stop it before it reaches inboxes.
However, the best solution to avoid serious trouble, said Swidler, is to delete any e-mails with subject lines that refer to the worms or the word love. “Definitely don’t click the attachments,” he added.
A serious problem for Windows users. Here’s an update from Michael…
The Storm Worm is turning out to be one of the most resilient attacks in history. The creators use spam messages to entice users to a malicious Web site. The site uses JavaScript to launch exploits against your browser and programs. If this attack fails, you’re encouraged to download the virus manually. The virus turns your machine into a zombie.
Spam messages associated with the Storm Worm have taken many forms. [Recently], it was coming as confirmation messages from various sites. It has also taken the form of e-card spam. The messages originally warned of a European storm. Now, they entice you with a YouTube video.
Folks, the creators of the Storm Worm have planned the attack carefully and they’re staying ahead of security warnings. Make sure your security programs are updated and Windows is fully patched. And be careful where you click.
And one final note:
Infected computers generally show little sign of their infection; they just become unwilling members of the worm’s “bot army”. But emails you send to friends and business associates can be infected and their data compromised. Best to (1) trash suspicious emails, and (2) update and use your virus software often. More here.
Doug
4 Comments
View Printer Friendly Version
Email Article to Friend
Reader Comments (4)
Storm Worm is a worm that seeks out Microsoft Internet Information Services (IIS) systems that have not applied the proper security patches. Any such systems that it finds are then infected with the worm. The payload of this worm: it performs a denial-of-service attack on http:/ /www.microsoft.com .
I also found this comment at the end of the TechShout article notable:
"There is no mention of which operating systems are susceptible to this virus, and this is a serious disservice to your readers. Take our case: After 15 years, we are spending a good deal of money switching our business entirely to Intel Mac’s, primarily for security reasons, though usability is also improved. We run a small number of PC-only programs (flawlessly) in virtual machines on our Macs at the same time as running OS X. The PC side of the Mac does not have email and is limited to only a few IP addresses on the net. We do not currently use any antivirus protection for the PC or the Mac sides.
Incidentally, we do software and firmware for robotics education and research. (No battle bots or hobby work products) and we have been dealing with the horrors or Microsoft internals for many years. Their operating systems are houses of cards, and they continue to be so because with Microsoft’s monopoly position (threatened by the Clinton administration but then predictably left virtually untouched by Bush) allows them to get away with it.
Your news organization should not be part of this silence.
It may be that reporters or news outlets are being intimidated by Microsoft’s legal clout so that no mention is made that these are windows problems. (At least I expect they are. Certainly, if these were OS X or Linux problems they would be generating a different kind of story altogether.) But whether the omission is from fear or laxity or some other source, it is a glaring omission all the same.
I think you have to decide whether you are reporters or shills."
A valid observation and perspective.
I take care of this and other worms with regular use of Virus protection. As long as you do, you have no problems. Storm is just another worm.
Jarvis, didn't you read my earlier comment?
"Storm Worm is a worm that seeks out Microsoft Internet Information Services (IIS) systems that have not applied the proper security patches. Any such systems that it finds are then infected with the worm." You are living in a fantasy world if you rely entirely on anti-virus software.