Feeds

Bill Clinton virus proves user security sucks

Saxophone-playing cartoon screensaver

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Virus writers have disguised a malicious worm as a screensaver promising to make fun at the expense of former US president Bill Clinton.

Caric-A, which is spreading on the Internet to a modest extent, normally arrives in an email with the subject "bill caricature" and an attachment named "cari.scr".

If the recipient is daft enough to runs this attachment, a cartoon of Bill Clinton appears, playing a saxophone from which a bra emerges.

Meanwhile, the malicious payload activates, resulting in the worm forwarding itself to everyone listed in the victim's Outlook address book. If activated between 8am and 9am, it also attempts to delete files from root directories and with the extensions .SYS, .VXD, .OCX and .NLS, according to an analysis by Sophos.

As usual, Mac and Linux users are immune from the bug.

Text at the end of the email says "No viruse [sic] found", and quotes AV company MCAFEE.COM, to give the impression that it has been scanned and found to be clean.

Antivirus vendors are in the process of updating virus signatures to spot the malicious code and protection is now largely in place. ®

Related stories

Britney Spears virus fails to chart
Anna Kournikova virus spreading like wildfire
Anna Kournikova bug drops harmlessly onto the Net
Kournikova virus kiddie gets 150 hours community service
2001: vintage year for virus infections
Rise in viruses within emails outpacing growth of email
Hybrid viruses set to become bigger threat
Users haven't learned any lessons from the Love Bug
Virus toolkits are s'kiddie menace

Internet Security Threat Report 2014

More from The Register

next story
George Clooney, WikiLeaks' lawyer wife hand out burner phones to wedding guests
Day 4: 'News'-papers STILL rammed with Clooney nuptials
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.