 | |
 |
| Virus Warnings / Patches | Risk | Virus Name | Date Discoverd |
|
| From The Forum: SecurityWatch | |
| |
Fake Jacko Movie Trying To Recruit Zombie Computers. In a hoax which tries to get users to download a Trojan horse, hackers are exploiting the name of Michael Jackson. Computer users are pointed to a phony video trying to coax them to download the unsuspected virus.
Hackers have gone as far to post links to the fake video on newsgroups. The video supposedly shows Jackson performing “un-natural acts” with a young boy.
Instead of opening the user’s desired video, it actually takes them to a web site that automatically downloads a Trojan horse called hackarmy, which allows hackers to enter a back door to infected computers.
"There's no real movie here, just a Trojan that allows hackers to access your computer," said Graham Cluley, senior technology consultant for Sophos.
"It supposedly gives you pictures of Michael Jackson doing bad things. There's a real danger that people are getting their news from gossip groups like these and not from proper news sites.”
One of the messages that linked to the file read:
"Subject:
Michael Jackson Home Movie Horror
Message body:
Posted here are the pictures that are going to put Michael Jackson behind bars for a very long time. Disturbing stills taken from the home movies shot by Mr Jackson are now circulating the net. In these pictures here, it can be clearly seen that Mr Jackson is performing un-natural acts with the boy in question."
Earlier this week, hackers tried a similar trick with a photo of David Beckham, which downloaded the same Trojan, distributed by the Hackarmy.
MyDoom Has Antivirus Firms In Sights. In the latest version of MyDoom & MyDoom.AE worm authors embedded a message ridiculing rival worm NetSky and promising to attack the antivirus companies.
Worm authors have threatened to attack antivirus companies F-Secure, Symantec, Trend Micro and McAfee.
"It remains to be seen what they mean by threatening to attack us," said Mikko Hypponen, director of antivirus research for F-Secure. "That might mean a denial-of-service attack [DoS]. We've been a target before, but they haven't tried any recently."
Hypponen said that the message included comments on previous viruses, poking fun at the NetSky writer Sven Jaschen for being arrested: "Because Jaschen has been arrested, he is no longer a player in the virus war. And MyDoom wanted to highlight they had won the war."
Tips, tools and ideas for online marketing success
- learn more |
|
The message read:
"Lucky's Av's ;P~.
Sasser author gets IT security job and we will work with Mydoom , P2P worms and exploit codes .
Also we will attack f-secure,symantec,trendmicro,mcafee , etc.
The 11th of march is the skynet day lol [laugh out loud].
When the beagle and mydoom loose, we wanna stop our activity <== so Where is the Skynet now? lol. [sic]."
"It hasn't been too big a problem yet," he said. "That could be because it was released on Saturday and most people don't open their email then. This means that people will have had time to update”, Hypponen added.
Patch Issued For Microsoft’s SP2. A compatibility issue between recent Windows XP Service Pack 2 and an advertising application run on many users’ machines. SP2 was causing systems to crash due to a conflict with a hidden application called TV Media, from Total Velocity Software.
The August release of SP2 saw a large number of downloader’s contacting Microsoft because it was making their machine to constantly restart, displaying the following message: "A problem has been detected and Windows has been shut down to prevent damage to your computer . . . "
 The new patch will not allow users to install SP2 if they have TV Media installed on their machine. Instead, it offers them the patch, labeled Critical Update 885523, and after installing users then are able to install SP2.
The Critical Update is available for download at Microsoft's Web site.
Enjoy!
Jeremy Muncy + The SecurityProNews Team
| |
|
 About SecurityProNews
SecurityProNews is updated in real time with vital internet security alerts, news and in-depth articles for IT Managers. SecurityProNews understands that IT Management Begins With Security. |
|
SecurityProNews is brought to you by:
|
|  |
|
|
|
|
|
, Inc. 880 Corporate Drive, Lexington, KY 40503
