NHTCU warns over Sober worm
Print storyCyber-blitz enters second week
Posted in Software & Security, 28th November 2005 17:15 GMT
Free whitepaper – The future of SaaS and IT infrastructure management
The latest variants of the prolific Sober worm series are posing as messages from the UK's National Hi-Tech Crime Unit, prompting a warning from the British police agency.
The tactic is an extension of an ongoing mass virus attack. Other organisations similarly spoofed last week include the FBI and CIA in the USA and the German Bundeskriminalamt. Society heiress Paris Hilton also featured as the subject of some of the attacks.
The scam emails claims to recipients that their internet use has been monitored and that they have accessed illegal web sites. The emails then direct recipients to open an attachment, which Reg readers will not be surprised to hear is infectious. This Windows-specific malware travels in an email message with the subject line of "You visit illegal websites" or "Your IP was logged" from spoofed email addresses such as info@nhtcu.org and office@nhtcu.org. Users who open the infected message attachments on Windows machines will further propagate the outbreak, as well as leaving their machines open to additional attacks and misuse.
"These emails did not come from the NHTCU. Anybody who receives such an email should delete it without opening it," the police agency warns. NHTCU advises consumers to visit GetSafeOnline.org for tips on how to protect themselves and their computers for virus attacks. ®
Free whitepaper – Impact of the dramatic increase in devices on the cost to support
Should your email live in the cloud: a comparative cost analysis
Hosted security IT manager's guide
Jump start your Application Security initiatives
Securing your Apache web server with a Thawte digital certificate
Sign up, sign up for The Register IT security newsletter
Former top Sun exec mourns end of a franchise
Win an HTC Touch Diamond2!
Disties braced for autumn reseller collapses