Feeds

Would you like a cherry Bagle with your zombie PC?

More viral shenanigans

  • alert
  • submit to reddit

The essential guide to IT transformation

An unknown group of VXers has released a new version of the Bagle worm.

Bagle-Y (AKA Cherry Bagle) spreads by either email or network shares. It opens back doors on infected PCs and turns them into zombie clients in DDoS or spam networks. The worm also tries to terminate various security and anti-virus applications, as well as processes associated with the NetSky worm. Most AV vendors rate Bagle-Y, which was first spotted today, as medium-risk.

Finnish AV vendor F-Secure reports that the executable file icon in infected emails "looks like cherries on a stalk". The worm can attach itself as an executable file with COM, EXE, SCR and CPL extension, as a password-protected ZIP archive and VBS or HTA files. The number of spreading mechanisms distinguishes Bagle-Y from its numerous sibblings.

The worm can attach an image of a girl to its message so as to appear more legitimate. There are images of three girls inside the worm's body, F-Secure reports.

As usual, users are advised to minimise risk of infection by not clicking on unknown email attachments. Updating AV signature files is another sensible precaution. Mac and Linux users are - as usual - immune. ®

Related stories

Netsky tops virus charts by a country mile
Bagle-U plays MS Hearts
Latest Bagle worms spread on auto-pilot
Virus writers in malicious code hide-and-seek
War of the worms turns into war of words

Next gen security for virtualised datacentres

More from The Register

next story
Ice cream headache as black hat hacks sack Dairy Queen
I scream, you scream, we all scream 'DATA BREACH'!
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
KER-CHING! CryptoWall ransomware scam rakes in $1 MEEELLION
Anatomy of the net's most destructive ransomware threat
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
ISIS terror fanatics invade Diaspora after Twitter blockade
Nothing we can do to stop them, says decentralized network
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
prev story

Whitepapers

5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?