Feeds

Klez-H is the worst virus ever – official

Get out the AV Kleenex

  • alert
  • submit to reddit

SANS - Survey on application security programs

Klez-H is the worst virus ever, according to figures from managed services firm MessageLabs, which has blocked 775,000 copies of the pathogen since it first appeared on April 15. Klez-H overtakes the infamous SirCam worm.

MessageLabs is blocking 20,000 Klez-H infected emails per day. The virus accounts for one in 300 of the emails it scans.

Although the infamous Love Bug virus is generally regarded as the fastest spreading virus ever, and accounted for one in 28 at its peak, its outbreak only lasted a short time, while Klez-H has continued to spread.

Alex Shipp, MessageLabs chief ant-virus specialist, says the reason for Klez.H's 'success' lies in its ability to cover its tracks and deceive recipients.

"Klez-H is able to select random names from address books to use as the sender address, and also creates a large range of subject, text and attachment names, making it difficult to identify and track," he said.

"These elements have meant that the virus has been able to sustain high levels of activity over many weeks and not follow the usual peak and trough pattern that occurs in most outbreak situations."

Klez-H is a variant of the first Klez virus which appeared in December 2001 and represents a fresh trend in virus writing by continually modifying viruses until they foil enough anti-virus scanners to spread successfully to email users worldwide. By contrast, Klez-I, another variant which was released by the writer on the same day as Klez-H, barely made an impact. ®

External Links

Klez-H analysis (by Symantec)
Analysis of the spread of the Klez-H worm by MessageLabs

Related Stories

Virus writers outpace traditional AV
Klez storms monthly virus charts
Klez worm infects and infuriates
Bill Clinton virus proves user security sucks
Thousands of idiots still infected by SirCam
SirCam virus hogs connections with spam
Hybrid viruses set to become bigger threat
Users haven't learned any lessons from the Love Bug
Rise in viruses within emails outpacing growth of email

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Arts and crafts store Michaels says 3 million credit cards exposed in breach
Meanwhile, Target investigators prepare for long process in nabbing hackers
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.