Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Worm Spreads With Random Subject Lines

Mail inboxes can have e-mails coming with a picture attached and having subject lines like "FIFA", "Bush" or "Incredible". Micro World security experts have warned recipients to be wary of such e-mails because they can spread the worm called "Womble.d" on PCs when the reader opens the e-mail attachment.

The worm "Womble.d" is created in Visual C++. It uses the "Ultimate Packer for Executables" (UPX) tool and spreads through mass mailing. It collects e-mail ids from the victim's address book and distributes its copies to those ids. The worm is able to flourish because of a loophole in 'Microsoft Windows Operating System' known as "SetAbortProc Code Execution". When a user opens the link in the attachment that leads to a malicious website, the worm infects the computer. The infection takes form of an error in 'Windows Metafiles'. Microsoft has provided a patch for this flaw, which can be downloaded from its website.

According to Arti Taru, a security analyst at Micro World Technologies, one may not suspect the image file as an attachment if it comes from a close friend. The worm is adept in Social Engineering as it can pick up various subject lines and capitalize on different tastes and interests of people. In the process, it is sure to strike at least some victims.

The worm spreading e-mails has some randomly chosen subject lines like Bush, Incredible, Lola, Re: Info, Alike, FIFA, Look at this, Miss Kan, and Paula. The e-mails also have random attachments named as some_info.wmf, new_picture.jpg, seduction_secrets.pif, and firefox_update.pif.zip.
The worm sends across a message to comprehensively protect Web access and electronic mail communication even if the embedded files are considered harmless, says CEO of Micro World Technologies, Govind Rammurthy. Websites and e-mail attachments commonly come as GIF and JPEG files and anyone who is lured by them does not want to lose his/ her personal data to a remote hacker. Thus, security mechanisms should remain at vigil even when reflexes betray you.

Security experts recommend users to install quality anti-spam and anti-virus software to block such attacks and keeps users safe from being victimized.

Related article: Worm Infected Alaska Candidates' Website

ยป SPAMfighter News - 10/4/2006

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page