September 21, 2005 11:56 AM PDT

Bagle attack comes in two waves

Two waves of spam were launched this week to send out new variants of the Bagle Trojan horse, antivirus company Sophos said.

All versions of the Bagle DI-U Trojan try to turn off antivirus and security software, and to block access to security Web sites, in an attempt to strip away a PC's immune system, enabling hackers to gain access, Sophos said in a statement Tuesday.

There are strong similarities between the two waves of spammed messages bearing the Trojan, according to Sophos. In both, the subject line is blank, the body message text is "new price," and the malicious file attached could be identified with names such as "09_price.zip," "price_new.zip," and "price2.zip."

Bagle has spawned at least 70 variants since the virus emerged in January 2004. Some iterations have been more sophisticated than others, blending mass-mailing and Trojan horse techniques.

Sophos advised taking the usual precautions against such attacks. "All computer users must avoid opening unsolicited e-mail attachments and ensure that their antivirus protection is up-to-date," Carole Theriault, a senior security consultant at the antivirus company, said in a statement.

Theriault said corporate Internet users should also consider blocking all executable code from entering their networks via e-mail.

Tom Espiner of ZDNet UK reported from London. CNET News.com's Joris Evers contributed to this report.

4 comments

Join the conversation!
Add your comment (Log in or register)
Too much cyber crime and too little time- what is one to do?
Too much cyber crime and too little time- what is one to do?

My companies and its affiliates were attacked from Beijing servers through Phishing on emails and trojans. This two part attack was, well, prolific and must be robotic because we eliminate it and it comes back automatically.

Plus these anonymous entitities that attempt to take over my servers also try to make all related addresses and PCs robots to continue their nefarious derring do. Simply put, we need the US Senate to authorize the Cybercrime Treaty the European Union put forward and which both Taiwan and Beijing signed so we can track these cyber scammers down and shut them down.

Then, consumers need to have mandated that not only the US Government as the Privacy Act states uses top authentication like Dept. of Commerce level 4 multi-factor authentication with offline swipe device but that the same top protection be given to consumers so that confidence in e-commerce comes back. That is all I have to say.
Posted by (66 comments )
Reply Link Flag
Too much cyber crime and too little time- what is one to do?
Too much cyber crime and too little time- what is one to do?

My companies and its affiliates were attacked from Beijing servers through Phishing on emails and trojans. This two part attack was, well, prolific and must be robotic because we eliminate it and it comes back automatically.

Plus these anonymous entitities that attempt to take over my servers also try to make all related addresses and PCs robots to continue their nefarious derring do. Simply put, we need the US Senate to authorize the Cybercrime Treaty the European Union put forward and which both Taiwan and Beijing signed so we can track these cyber scammers down and shut them down.

Then, consumers need to have mandated that not only the US Government as the Privacy Act states uses top authentication like Dept. of Commerce level 4 multi-factor authentication with offline swipe device but that the same top protection be given to consumers so that confidence in e-commerce comes back. That is all I have to say.
Posted by (66 comments )
Reply Link Flag
Too much cyber crime and too little time- what is one to do?
Too much cyber crime and too little time- what is one to do?

My companies and its affiliates were attacked from Beijing servers through Phishing on emails and trojans. This two part attack was, well, prolific and must be robotic because we eliminate it and it comes back automatically.

Plus these anonymous entitities that attempt to take over my servers also try to make all related addresses and PCs robots to continue their nefarious derring do. Simply put, we need the US Senate to authorize the Cybercrime Treaty the European Union put forward and which both Taiwan and Beijing signed so we can track these cyber scammers down and shut them down.

Then, consumers need to have mandated that not only the US Government as the Privacy Act states uses top authentication like Dept. of Commerce level 4 multi-factor authentication with offline swipe device but that the same top protection be given to consumers so that confidence in e-commerce comes back. That is all I have to say.
Posted by (66 comments )
Reply Link Flag
Too much cyber crime and too little time- what is one to do?
Too much cyber crime and too little time- what is one to do?

My companies and its affiliates were attacked from Beijing servers through Phishing on emails and trojans. This two part attack was, well, prolific and must be robotic because we eliminate it and it comes back automatically.

Plus these anonymous entitities that attempt to take over my servers also try to make all related addresses and PCs robots to continue their nefarious derring do. Simply put, we need the US Senate to authorize the Cybercrime Treaty the European Union put forward and which both Taiwan and Beijing signed so we can track these cyber scammers down and shut them down.

Then, consumers need to have mandated that not only the US Government as the Privacy Act states uses top authentication like Dept. of Commerce level 4 multi-factor authentication with offline swipe device but that the same top protection be given to consumers so that confidence in e-commerce comes back. That is all I have to say.
Posted by (66 comments )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

Inside CNET News

1-2 of 12

Scroll Left Scroll Right

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

Markets

Market news, charts, SEC filings, and more

Related quotes

Dow Jones Industrials (0.57%) 72.81 12,874.04
S&P 500 (0.68%) 9.13 1,351.77
NASDAQ (0.95%) 27.51 2,931.39
CNET TECH (0.84%) 17.13 2,049.14
  Symbol Lookup