- Security Experts Warn of Kama Sutra Worm (yet another MS worm)
- Posted by Imhotep on January 27th, 2006
"Security analysts are warning computer users about a new and potentially
destructive Internet worm that can obliterate important documents. The
worm, called Kama Sutra, is making the rounds now, but is scheduled to
execute its first massive attack on February 3.
Detected last week, the malicious worm targets computers running Windows and
spreads primarily by copying itself to shared network locations and then
sending itself to e-mail addresses found on afflicted computers. With
subject lines that read "the best videoclip ever," "give me a kiss," and
"school girl fantasies gone bad," the worm entices computer users to open
the attached file. "
http://www.cio-today.com/news/Expert...d=12100465ZLIH
Imhotep
- Posted by PA Bear on January 27th, 2006
See http://blogs.technet.com/antimalware...2006/1/26.aspx and
http://isc.sans.org/diary.php?storyid=1067
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE, Shell/User, Security), Aumha.org VSOP, DTS-L.org
Imhotep wrote:
- Posted by JTJersey on January 28th, 2006
On Thu, 26 Jan 2006 23:30:56 -0500, Imhotep wrote:
How does it know it's obliterating "important documents" as opposed to
mundane, expendable documents?
Do people really open files with subject lines that?
- Posted by Imhotep on January 29th, 2006
JTJersey wrote:
Not sure...
Yes, there are really stupid people out there......
Imhotep
- Posted by Edw. Peach on January 30th, 2006
This site gives a little more information:
http://www.pcdoctor-guide.com/wordpress/?p=2237
It states: "The overwriting part is the nastiest aspect of the
payload - on the third day of each month it will overwrite the
contents of Microsoft Word, PowerPoint and Excel files, Adobe PDF
documents and ZIP and RAR compressed files (the complete list of files
affected are DOC, XLS, MDB, MDE, PPT, PPS, ZIP, RAR, PDF, PSD and DMP
extension)."
