Feeds

'Alien greeting' harbours Windows malware

Plan 9 from cyberspace

  • alert
  • submit to reddit

Internet Security Threat Report 2014

A message purporting to come from an alien is in reality, you've guessed it, the latest Windows PC-infecting computer virus. The Sundor-A worm displays a picture of an alien with the following message: "I'm the alien. Have a happy week. I liked your computer" upon infection.

If you open an infected Word document you get the pox. Sundor-A then goes about deleting programs and documents from the infected computer's hard drive and disabling security software, potentially leaving compromised PCs open to further attack.

Sundor-A relies on someone to deliberately send infected files to prospective victims. It doesn't mass-mail itself, a factor that has limited the spread of the malware. "In many ways it's an old school virus. We don't see anything like as many Word viruses as we did back in the mid-late 1990s, and its graphical payload seems like the behaviour of older 'classic' viruses too. It is possible that some users may believe that it is a joke program sent from a friend rather than something deliberately malicious," said Graham Cluley, senior technology consultant at anti-virus firm Sophos.

Sundor-A is a low risk virus but Windows users would still be well advised to keep their anti-virus protection up-to-date and to practice safe computing, such as by avoiding the temptation to open suspicious-looking emails. You know it makes sense. ®

Related stories

Area 51 'hacker' charges dropped
Romanian villagers flee disco-dancing aliens
Methane on Mars: aliens - or farts in a jacuzzi?
SETI has not found ET: official

Secure remote control for conventional and virtual desktops

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Home Office: Fancy flogging us some SECRET SPY GEAR?
If you do, tell NOBODY what it's for or how it works
Syrian Electronic Army in news site 'hack' POP-UP MAYHEM
Gigya redirect exploit blamed for pop-rageous ploy
prev story

Whitepapers

Go beyond APM with real-time IT operations analytics
How IT operations teams can harness the wealth of wire data already flowing through their environment for real-time operational intelligence.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Seattle children’s accelerates Citrix login times by 500% with cross-tier insight
Seattle Children’s is a leading research hospital with a large and growing Citrix XenDesktop deployment. See how they used ExtraHop to accelerate launch times.