Virus Alert – Just calm down

Experts at SophosLabsâ„¢, Sophos’s global network of virus, spyware and spam analysis centers, have warned users not to panic over the threat posed by the Nyxem-D worm (also known as Blackworm, Email-Worm.Win32.VB.bi, Win32/Mywife.e or W32.Blackmal.E@mm), which is programmed to wipe data on infected computers on Friday 3 February, but to take calm action.

“When you panic, you make mistakes,” said Graham Cluley, senior technology consultant for Sophos. “Sit down, have a cup of tea, and work out if you have done everything you should have done to ensure your computer isn’t at risk from the Nyxem worm, and indeed any of the other 120,000 pieces of malware in existence.”

The W32/Nyxem-D worm, which can pose as pictures of the Kama Sutra, has a destructive payload, which triggers half an hour after a computer is booted on the third day of any month, destroying DOC, XLS, MDB, MDE, PPT, PPS, ZIP, RAR, PDF, PSD and DMP files by replacing their contents with the phrase:

DATA Error [47 0F 94 93 F4 K5]

The Nyxem worm overwrites files with a bogus error message

Sophos automatically updated customers with protection against the W32/Nyxem-D Windows worm, which does not infect Macintosh computers, at 16:03 GMT on 16 January 2006. Experts believe that home users may be at more risk than businesses because typically they take security issues less seriously.

Need Antivirus?
I recommend Bsafe Online’s Security Suite. A 10-day FREE trial is available here.

Read More here:
Sophos urges calm as panic over Friday’s Nyxem worm attack spirals

Santa Claus worm targets AIM, MSN, Yahoo IM users

VIRUS ALERT!

A Santa Claus worm is attempting to trick America Online, Microsoft MSN and Yahoo instant-messaging users into clicking on a file that delivers unwanted software to a victim’s computer.

The IM.GiftCom.All worm attempts to dupe IM users into thinking an acquaintance has sent them a link to a harmless Santa Claus file, according to a security advisory issued Tuesday by IMlogic.

People who click on the file will see an image of Santa, but what they are less likely to notice is a so-called rootkit being installed onto their system. A rootkit is a tool designed to go undetected by the security software used to lock down control of a computer after an initial hack. The malicious attacker can then distribute messages to the user’s IM contacts, using a similar technique to lure the unsuspecting acquaintance to click on the link.

The Santa worm is the latest tactic to be used on IM networks. Past tricks have included offers of movie clips to the latest release of “Star Wars” that instead led to an infected computer.

Full story here:
http://news.zdnet.com/2100-1009_22-6002790.html