Feeds

War of the worms turns into war of words

Netsky and Bagle authors having a ding-dong?

  • alert
  • submit to reddit

Protecting against web application threats using SSL

The unknown authors of the Netsky and Bagle worms are battling in cyberspace for control of vulnerable Windows PCs. Maybe.

New versions of the Bagle worm (e.g. Bagle-J) make derogatory comments about the Netsky worm's creator within their virus code.

Meanwhile, three new Netsky worms designed to remove Bagle and MyDoom infections from infected PCs have also arrived on the scene in recent days.

In apparent response, the people behind MyDoom have released an updated version of their malware, MyDoom-G, which is not disabled by Netsky.

Since February 27, the authors of the Bagle have released nine versions (Bagle-C to K). In the same period, three new versions of Netsky (Netsky-D to F) have appeared on the Net.

According to Steven Sundermeier, a veep at AV firm Central Command, the short period between each worm release, "by the same set of virus writing groups, is real reason for alarm, especially since so many of them have successfully compromised systems worldwide. It's a direct attack on the response times of antivirus companies, a strain on IT professionals, a financial impact on businesses, and appears to be a war over power and seniority among these authors."

Or is it an elaborate smokescreen? Maybe the picture of three rival gangs fighting it out on the Net is deceptive.

Sundermeier says: "Obviously, virus writers can't be trusted. So, what might appear as a malicious cat-and-mouse game between virus writing groups may actually be a well-organized cover-up to disguise their true intentions." ®

Related Stories

Netsky-D makes your PC go beep, beep, beep
Fistful of Bagles shoot up the Net
MyDoom and Netsky cause chaos
MyDoom is the worst virus ever

Related Stories

Viral timeline from F-Secure

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.