The Channel logo

News

By | John Leyden 1st August 2006 11:20

Worm targets Windows PowerShell script

Fresh target. Usual dialogue

Virus writers have created an experimental form of malware written in Windows PowerShell script, the command line and scripting language used by Windows.

Cibyz was developed by the same Austrian VXers who developed proof of concept malware targeting Microsoft Command Shell (MSH) technology, later renamed PowerShell.

Cibyz represents a refinement of earlier malware that's capable of infecting Windows XP and Windows Server 2003 machines, as well as Vista boxes.

Although the technique used to develop the Cibyz worm is novel, its propagation techniques are all too familiar. The worm attempts to spread via the Kazaa P2P file sharing application by posing as one of a variety of useful utilities. Users who attempt to open these illicit files (scripts) will find themselves infected. However, the worm does little damage apart from dropping a copy of itself in shared folders used by Kazaa.

The malware isn't spreading. Anti-virus firms classify Cibyz as a low-risk threat. ®

alert Send corrections

Opinion

Chris Mellor

Drives nails forged with Red Hat iron into VCE's coffin
Sleep Cycle iOS app screenshot

Trevor Pott

Forget big-spending globo biz: it's about the consumer... and he's desperate for a nap
Steve Bennet, ex-Symantec CEO

Chris Mellor

Enormo security firm needs to get serious about acquisitions

Features

Windows 8.1 Update  Storeapps Taskbar
Chinese Buffet self-service
Chopping down the phone tree to scrump low-hanging fruit
An original member of the System/360 family announced in 1964, the Model 50 was the most powerful unit in the medium price range.
Big Blue's big $5bn bet adjusted, modified, reduced, back for more
Microsoft CEO Satya Nadella
Redmond needs to discover the mathematics of trust