January 31, 2006 9:39 AM PST

Microsoft weighs in on Kama Sutra worm

Related Stories

ISP sends alert to Kama Sutra victims

January 30, 2006

Kama Sutra worm seduces PC users

January 23, 2006
Microsoft in an e-mail Tuesday warned users to update their antivirus protections against the Kama Sutra worm, the mass-mailing virus slated to begin corrupting files later this week.

In its advisory for the Kama Sutra worm, otherwise known as win32/Mywife.E@mm and Nyxem.E, Microsoft warns users to be wary of opening unknown attachments.

The worm, which infects a user's computer once an attachment is opened, may also spread over writeable network shares if there are blank administrator passwords. Users hit with the worm may find a number of their files permanently corrupted on the third day of every month, beginning this Friday.

Like other worms, the Kama Sutra virus attempts to disable security software that is loaded on users systems, Microsoft warns.

Microsoft is advising users to update their antivirus software, as well as remain cautious when opening unknown attachments and use strong password protection.

Security experts estimate the worm has infected at least 500,000 PCs, often using pornography as its enticement.


Join the conversation!
Add your comment
500,000 idiots
That deserve it!!
Posted by mrpeabody3119 (101 comments )
Reply Link Flag
At least try...
To spell correctly or use the right word when trying to insult people..."That" should be "They."
Posted by Hobo453567 (26 comments )
Link Flag
McAfee has no info about this virus
I was surprised that I was unable to find any reference to the kama sutra virus on McAfee's site. Perhaps it's known under a different name, but even in that case I can't imagine that the virus profile would not include the variants on the virus' name.

Of course, they may not have a good search engine, or their site does not work properly with browsers other than IE (which would come as no surprise since McAfee is aggressively MS-only oriented). In one of the search areas for the site, when I enter "kama sutra" and activate the search, the space is removed and the search is based on "kamasutra" instead, although in this case it happens in both IE and FF1.5.

I just thought this was a little weird.
Posted by rshew (44 comments )
Reply Link Flag
Here are other names from the cnn story
It also goes by the names Blackworm, Blackmal, and Nyxem.

Mcafee may have it under one of these names.
Posted by techguy83 (295 comments )
Link Flag
Symantec has no mention of this virus
Symantec doesn't mention the Kama Sutra virus on their website either. Or the virus' other name, Nyxem.E. How strange is it that 2 of the top anti-virus products don't mention this latest threat. I also double checked that it is not listed in Symantec's "hoax" section.
Posted by jhussing (1 comment )
Link Flag
Yet another intrusion
This is awful to have such attacks and not know where they come from and who is making them. I wish someome could come up with a solution to this continuing problem. My 13 year old son said yesterday that he thinks it would be cool if first, your anti-virus locks it up, then a tracer could be initiated when the threat of a virus appears on ones' computer. The tracer follows the path of this destructive virus and goes back to the site where it was initiated. Once there it gets into that computer, gets the computer ID shuts down the system virtually locking it up, sends the info to the feds, they come after that person/or persons responsible, and nail 'em to the wall so to speak!
It's about time someone did something to stop these attacks!
How can a person work with their computer when it's constantly bombarded with viruses, spam, worms, hijackers, etc.
Last year, even though I had an anti-virus program and spyware, I still got attacked! And I had to pay to have my computer totally cleaned and all new programming put on!
I thought that I had the best antivirus money could buy. I had Symantec, Corporate Edition.
The virus got in anyway and disabled my anti-virus, then attacked my computer system.
And it wasn't through an email. It was through a pop-up ad that I was attacked. By the way, if I download an attachment that Mcaffee says is free of viruses, and then run an additional virus check with my own software, does that render the attachment safe if the software and Mcaffee doesn't detect anything? Probably not, but I just wondered.
Is it terrorists who are implementing these virus attacks?
People disgruntled with Microsoft operating systems?
What gives?
Trying to understand but not happy at all about this!
A mom with a child that has to use the internet for homework at times.
Posted by kentuckashee (3 comments )
Reply Link Flag
Well, there are alot of reasons people write viruses for the Windows Operating systems.

Here are a few plausible and likely reasons.

1. Money.: Several of the newer viruses are made not to shut down a computer, but to gather as much sensitive information as possible. These types of viruses then send the information through a series of bot computers to a specified destination. The virus writer then sells the information to unscrupulous companies that then bombard you with spam and such.

2. To set up botnets.: Botnets are how several virus writers cover their tracks. Take a computer from Australia, Taiwan, China, Germany, South America, Africa, and then a U.S. computer, and it slows down the detection process and lets the virus writers get away with what they do.

3. To make a point.: The Blaster worm was, from what I have heard, (not that this is true, just what I heard) was designed to try to get Bill Gates to stop writing sloppy Windows Operating Systems.

These are just three possible reasons. There are many more, but, well, I don't have all day to list them all :)

Hope that helps.
Posted by techguy83 (295 comments )
Link Flag
Eluding to computer security...
Just a couple of comments in response...
1)Although you can never be 100% sure, if you've checked a file with 2 UP-TO-DATE antivirus programs 99.99% of the time it should be a safe file.
2)While it may seem that if you have a completely up-to-date Internet Security Suite(meaning email scanning, virus scanning, on access file scanner and firewall) installed keeping your windows computer updated is also very important.
3) While MS products may seem the easiest to set up or use, for these same reasons they are also the easiest to attack. I would advise you to use a mainstream but alternative program whenever possible(I use mozzila firefox as my browser for instance).
4) I just wanted to say that that is a very cool idea your son had, I happened to have a similar thought several years back...not the same mind you, but similar.
Posted by TheTechKid (66 comments )
Link Flag
It isn't that simple, but I wish it was
Most viruses come from other infected computers. If your sons idea happened (and it is technically possible) then chances are your computer would be one of the many locked up computers!

Feel free to be offended, but the fault lies with you. If I drove a car into a house then I would to blame, not the car. It is the same situation. I have never had a virus problem. Never have I been forced to format a computer, lost any file, had reboots, etc over a virus/trojon. It is all because I am careful. The problem is, to take the kind of care that I do requires knowledge. Knowledge of what to do and what not to do. Without this knowledge you need better software/hardware, but with constantly evolving threats it is hard.

<whinge>It is a shame that the world has ended up like this. Back in the old days there were not thousands of people on the internet trying cause trouble or make money in dodgy ways.</whinge>
Posted by Andrew J Glina (1673 comments )
Link Flag
Consider XP user "type"
For what it's worth: I have 2 user accounts on my XP Pro system. One "limited account" for day to day use and another "computer administrator" account for installing software as needed.

In practice this seems to protect me from most of my "foolish" user operations that tend to install adware / spyware and viruses, because the "limited" user account can't write to the system registry, "windows" or "program files" folders.

It is occasionally annoying to have to "switch user" to make a system-wide change, but I'm happy in general to endure it.

Unix readers will recognise the generic wisdom in not logging in as "root" for day to day use :^)

I'm also given to understand that the next Windows OS update will actually operate this way "out of the box"... one "administrator" but many "limited users".

Posted by bradfuller (1 comment )
Reply Link Flag
Will this virus attack removable hard drives...
That are unplugged from the PC before midnight?

I'd like to back everything up to the HD rather than use loads of DVD's.
Posted by Lythia (2 comments )
Reply Link Flag

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot



RSS Feeds

Add headlines from CNET News to your homepage or feedreader.