New Storm Worm Variant Spreading
http://www.nationalcybersecurity.com/articles/161/1/New-Storm-Worm-Variant-Spreading/Page1.html
Grey McKenzie
National Cyber Security FounderCyber security watchdog & one of the nation's leading cyber security experts, Grey McKenzie is also the Founder of SpyCop Security Software & Soft Media Publishing Incorporated.
His clients include members of the US Department of Homeland Security, US State Department, US Department of Defense, US Federal Bureau of Investigation, US Central Intelligence Agency, State & Local Law Enforcement not to mention over 50,000 companies & individuals worldwide.
He is regularly consulted by industry leaders regarding cyber security issues.
To schedule a procedural, technical and non-technical network security audit of your company call 902-532-2262
By Grey McKenzie
Published on 06/19/2008
US-CERT has received reports of new Storm Worm related activity. The
latest activity is centered around messages related to the recent
earthquake in China and the upcoming Olympic Games. This Trojan is
spread via an unsolicited email message that contains a link to a
malicious website. This website contains a video that when opened may
run the executable file "beijing.exe" to infect the user's system with
malicious code.
Subject lines can change at any time, but the following subject lines
are noted as being used:
* The most powerful quake hits China
* Countless victims of earthquake in China
* Death toll in China is growing
* Recent earthquake in china took a heavy toll
* Recent china earthquake kills million
* China is paralyzed by new earthquake
* Death toll in China exceeds 1000000
* A new powerful disaster in China
* A new deadly catastrophe in China
* 2008 Olympic Games are under the threat
* China's most deadly earthquake
US-CERT encourages users and administrators to take the following
preventative measures to mitgate the security risks:
* Install anti-virus software, and keep its virus signature files
up-to-date.
* Do not follow unsolicited web links received in email messages.
* Refer to the Recognizing and Avoiding Email Scams (pdf) document
for more information on avoiding email scams.
* Refer to the Avoiding Social Engineering and Phishing Attacks
document for more information on social engineering attacks.
latest activity is centered around messages related to the recent
earthquake in China and the upcoming Olympic Games. This Trojan is
spread via an unsolicited email message that contains a link to a
malicious website. This website contains a video that when opened may
run the executable file "beijing.exe" to infect the user's system with
malicious code.
Subject lines can change at any time, but the following subject lines
are noted as being used:
* The most powerful quake hits China
* Countless victims of earthquake in China
* Death toll in China is growing
* Recent earthquake in china took a heavy toll
* Recent china earthquake kills million
* China is paralyzed by new earthquake
* Death toll in China exceeds 1000000
* A new powerful disaster in China
* A new deadly catastrophe in China
* 2008 Olympic Games are under the threat
* China's most deadly earthquake
US-CERT encourages users and administrators to take the following
preventative measures to mitgate the security risks:
* Install anti-virus software, and keep its virus signature files
up-to-date.
* Do not follow unsolicited web links received in email messages.
* Refer to the Recognizing and Avoiding Email Scams (pdf) document
for more information on avoiding email scams.
* Refer to the Avoiding Social Engineering and Phishing Attacks
document for more information on social engineering attacks.