Feeds

FBI issues Sober notice over Windows worm

Sober-K also poses as Paris Hilton clips

  • alert
  • submit to reddit

Securing Web Applications Made Simple and Scalable

Virus writers are attempting to scare surfers into opening malicious code with a message posing as an FBI notice that they have visited an "illegal website". Recipients are invited to open a "questionnaire", which is really the latest Windows worm Sober-K. To add authenticity infected emails come from a faked @fbi.gov address.

The tactic, which recycles a trick first used over a year ago, prompted the FBI to issue a notice this week warning users to be wary of the ruse. "These e-mails did not come from the FBI. Recipients of this or similar solicitations should know that the FBI does not engage in the practice of sending unsolicited e-mails to the public in this manner," it said.

The FBI said it is investigating the source of the Sober-K worm. As well as posing as "FBI investigation notices", Sober-K (which sends messages in either German or English) also poses as "x-rated movie clips" featuring Paris Hilton, the Fluffy Blonde Idiot. Sober-K has spread rapidly since its appearance earlier this week. Most anti-virus vendors rate is as a medium-risk nuisance.

Emails infected by the Ahker-C worm, another new Windows virus, also use promises of "hardcore footage" of the ubiquitous Ms. Hilton as bait. The Ahker-C worm sends itself using the subject line "Paris Hilton...download it!" and an attached file called "ParisXXX.zip". The worm attempts to disable anti-virus and firewall software running on the computer. Ahker-C is generally rated as a low-risk nuisance.

The batch of Paris Hilton-themed worms arrived this week after it emerged that hackers had broken into the society heiress's mobile phone address book, and published the private telephone numbers for celebrities such as Anna Kournikova, Lindsay Lohan and Vin Diesel. ®

Related stories

Bogus FBI warning file contains malware
Sober worm speaks with forked tongue
T-Mobile to probe Paris' security breach
Paris Hilton's Sidekick hacked

Mobile application security vulnerability report

More from The Register

next story
NEW, SINISTER web tracking tech fingerprints your computer by making it draw
Have you been on YouPorn lately, perhaps? White House website?
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Black Hat anti-Tor talk smashed by lawyers' wrecking ball
Unmasking hidden users is too hot for Carnegie-Mellon
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
British data cops: We need greater powers and more money
You want data butt kicking, we need bigger boots - ICO
prev story

Whitepapers

Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.