Article

New Bagle variants spreading

Bill Brenner, News Writer

New variants of the prolific Bagle worm were spreading across cyberspace Thursday morning, prompting several antivirus firms to issue alerts.

Bagle-AY and Bagle-AX spread through tainted e-mail messages. Kaspersky Lab of Russia issued a severe-risk alert to its customers, while Danish security firm Secunia labeled the worms a medium-risk.

At this point, Bagle-AY appears to be spreading more rapidly. In addition to e-mail, Lynnfield, Mass.-based antivirus firm Sophos said this variant also spreads through peer-to-peer file-sharing networks. And it will try to disable antivirus and other security tools running on infected PCs.

"Everyone should be cautious of unsolicited e-mail attachments and be wary of what they download from Internet file-sharing networks," Graham Cluley, senior technology consultant for Sophos, said in a statement. "So far, 2005 has been fairly quiet in terms of brand new virus outbreaks. If everyone applied computer security common sense it would help keep it that way."

According to Sophos, the worm uses such subject lines as:

Delivery service mail;
Delivery by mail;
Registration is accepted;
Is delivered mail; and
You are made active.

Finnish security firm F-Secure said Bagle-AY sightings had been reported in several different countries by early Thursday morning. The firm said this variant was similar to Bagle-AX in that it is polymorphic, arrives in e-mails with variable subjects

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

and attachments and has peer-to-peer spreading capabilities. Bagle-AY also contains a backdoor that listens on TCP port 81 and is programmed to cease its activity on April 25, 2006.

Secunia's advisory links to alerts from seven antivirus firms and includes different aliases each use to identify the new variants.

Related Topics: Malware, Viruses, Trojans and Spyware, VIEW ALL TOPICS

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Cloud Security
Consumerization
Financial Security
SMB Security
Security AU
Security IN
Computer Weekly

Cloud Security
- Can self-managed cloud security controls ease enterprise concerns?
  
  Expert Dave Shackleford details how enterprises can increasingly manage their own cloud security controls with private virtual cloud offerings.
- How to use PCI SSC supplement to achieve PCI compliance in the cloud
  
  Ed Moyle examines highlights of the recently released PCI SSC information supplement that offers new details on achieving PCI compliance in the cloud.
- Cloud API security risks: How to assess cloud service provider APIs
  
  The CSA says cloud API security is a top threat to cloud environments. Expert Dave Shackleford explains how to assess the security of providers' APIs.
Consumerization
- BlackBerry, VMware deliver dual persona features for mobile devices
  
  BlackBerry's Secure Work Space for iOS and Android will help heavily regulated companies or those searching for extra security to better support BYOD.
- How the consumerization of the enterprise has affected two firms
  
  The consumerization of the enterprise looks different in every company. Some firms are more open to new technologies and ways of working than others.
- Apple AirPrint and iOS printing alternatives: An IT overview
  
  Getting a document from a mobile device to paper is a hassle, but there are many options to help with iOS printing, including Apple AirPrint.
searchFinancialSecurity
- PayPal CISO: Laws must foster better cybersecurity information sharing
  
  PayPal's Michael Barrett says many firms fear misuse of shared cybersecurity data. He also discusses the evolution of PCI DSS and mobile payment security.
- Cybergang plans to use Trojan against U.S. banks
  
  A cybergang in Eastern Europe revealed plans to attack U.S. banks with a Gozi-like Trojan, according to RSA.
- Improved Shylock Trojan targets banking users
  
  The latest variant of the banking Trojan is causing numerous problems, Symantec said.
searchMidmarketSecurity
- Windows Phone 7 security: Assessing WP7 security features
  
  Windows Phone 7 security features are proving to be a mixed bag. Sam Cattle assesses the enterprise security pros and cons of the latest Windows mobile platform.
- Choosing the best security certifications for your career
  
  Whether starting your career or planning your next step as an IT security professional, this tip will guide you toward the best certifications for your interests and experience.
- A step-by-step SMB IT security risk assessment process
  
  Assessing your organization's security threats and risks takes just five steps, says Robbie Higgins. Check out his quick guide to the SMB security risk assessment process.
searchSecurityAU
- Website vulnerabilities down, but progress still needed, survey finds
  
  A survey released by WhiteHat Security finds that website vulnerabilities have decreased steadily in recent years, though problems persist.
- Cloud API security risks: How to assess cloud service provider APIs
  
  The CSA says cloud API security is a top threat to cloud environments. Expert Dave Shackleford explains how to assess the security of providers' APIs.
- How to configure a VLAN to achieve the benefits of VLAN security
  
  Expert Brad Casey explains how to configure a VLAN in order to achieve the benefits of VLAN security, including protection against insider attacks.
Information Security
- Microsoft offers 'fix' for latest Internet Explorer zero day
  
  Microsoft released a temporary fix to mitigate attacks using the most recent Internet Explorer 8 zero day vulnerability.
- Mobile apps development: New threats or same security rules apply?
  
  Two security experts get up on their soap box about the steps software teams should take to secure applications throughout the apps' lifecycle.
- Six ways to secure IP V6
  
  Indian businesses must take charge of the inherit security threats that migrating to IP V6 brings.
Computer Weekly
- Royal Bank of Scotland (RBS) announces more job cuts
  
  IT staff likely to be affected as 1,400 job cuts announced at RBS’s retail banking operation and no customer-facing roles to be included
- IBM to support Thames Water's big data strategy
  
  Thames Water has earmarked investments in big data analytics as part of its next five-year investment programme, with IBM contracted to support it.
- ‘Government must be militant about interoperability standards,’ says Maude
  
  Government must be militant about interoperability standards, says Cabinet Office minister Francis Maude

All Rights Reserved,Copyright 2000 - 2013, TechTarget