Feeds

'Potter-mania' fuels spread of NetSky-P

Worm - like Voldemort - just won't die

  • alert
  • submit to reddit

Protecting against web application threats using SSL

The frenzy surrounding the latest Harry Potter cinematic offering is helping to keep the prevalent NetSky-P worm alive.

Almost three months on from the first sighting of NetSky-P back in late March the worm still poses a significant threat. El Reg inboxes are bombarded with hundreds of copies of the worm each day and we're far from alone. AV firm Sophos places NetSky-P as the second most common irritant last month, second only to the infamous Sasser worm. Unlike Sasser, which infects computers without any user interaction, NetSky-P has to tempt PC users into launching an infected file. Netsky-P worm spreads via email and file-sharing systems.

Sophos reckons NetSky-P owes some of its continued 'success' to its ability to disguise itself as a Harry Potter computer game when spreading on file-sharing systems. With the first screening of Harry Potter and the Prisoner of Azkaban this week, Potter fans - eager to play the latest games - seem to be dropping their guard.

Netsky-P echoes the four year-old Pikachu worm in targeting young people by using a fictional kid's character. It's far from the first time virus writers have used the references to Harry Potter in inducements to open malicious code. Winur-C and Banuris-B posed as cracks to computer games involving the young wizard in their attempts to ensnare the unwary. Forlorn-D posed as a movie clip from Harry Potter And The Sorcerors Stone (sic), among other things. ®

Related stories

Viruses up - or down
Netsky tops virus charts by a country mile
Trust me I'm clean, claims virus
Warner Bros scraps Harry Potter legal actions

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.