A new virus is making the rounds and this one seems to be spreading like wildfire. On the afternoon of September 9, 2010 Google's search engine was pounded by users entering the search term 'here you have virus email' or a close combination/variation of these words.
At the time of the initial surge of searching for information on this virus, not a whole lot was to be found on the web. However by evening a bit more information had been learned.
Apparently throughout the earlier portion of the day a virus disguised as a supposed .pdf file began to spread throughout some pretty large companies and organizations. The phrase 'here you have' stems from the subject title of the e-mail in which the malware arrives and became the name of the virus (which at this time has not yet been determined what kind of malware 'here you have' is).
When users receive this e-mail it is accompanied with a link that encourages recipients to click on it in order to be able to read a .pdf. However the link does not lead to any such file, instead it is comprised of a Windows script that immediately transmits the malware and spams the entire contact list of the mailbox of the individual who followed the link.
Once this occurs, the malware circulates. Apparently many employees of some pretty big companies clicked the link and the infection seemingly went viral. Reportedly many of the computers slammed by the malware belonged to large entities such as NASA, Comcast and ABC/Disney (PC Magazine). An MSNBC feed reported Google and Coca Cola were also hit. As the malware spread, Comcast reportedly was forced to shut down e-mail servers completely.
Security experts and anti-virus organizations are currently studying the reports and trying to "paint a clearer picture" of what is going on. It is known how the malware propagates, but other details are still unknown. McAfee stated on Thursday afternoon that "it looks like multiple variants may be spreading and may take some time to work through them all to paint a clearer picture" (TheWrap via MSNBC).
PC Magazine reports that the malware cannot do anything on its own. As long as recipients avoid clicking the link (at least in this variant) no harm or foul done. Users who click the link will infect not only their computer, but any networked computers and inserted USB drives. In order to avoid being afflicted, any individual receiving an e-mail with the title "Here you have" in the subject line should simply delete it. PC Magazine describes this malware attack as "barely more" than a social engineering assault.
Internet users should always be leery of any links that come in e-mail, even from known senders because they may be inadvertently infected and not know they are spreading malware. Always run anti-virus, firewall and spyware software and keep it up to date.
There is no sure fire way not to get afflicted by malware, however knowing and understanding the threats and combining knowledge with protective software can significantly reduce the risks.
Bottom line if you receive the 'Here you have' subject line in your e-mail box, simply delete the e-mail, don't even open it.
Source:
http://www.helium.com/items/1947554-here-you-have-virus-e-mail-spreads-rapidly-through-in-boxes
No comments:
Post a Comment