The worm propagates through email via an attachment called “rechnung.zip.exe” and the subject line “KD Webshop Bestellung”, according to the blog.
Adam Biviano, premium services manager at Trend Micro A/NZ, stated that the worm enters a machine and hides itself, downloads a trojan, and logs passwords and other user activities.
“It’s not designed to target .gov, Microsoft or other well known files. It’s trying to hide itself from those that can source it. It’s still proving that the user is the weakest link,” said Biviano.
Biviano estimates a thousand Australian computers have been infected by the worm since it was first detected a few months ago.
Malicious worm reemerges
By
Negar Salek
on Feb 7, 2007 5:31PM
A new strain of the common NUWAR.CQ worm has been spreading since Monday, it was stated yesterday in security vendor Trend Micro’s security blog.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Partner Content
COVID-19 has increased the price of used IT gear
Partner Content
What is Chaos Engineering? The art of breaking things purposefully
Partner Content
Four reasons to upgrade your business to fibre internet
Sponsored Content
The push to move Teams users to cloud telephony
Sponsored Whitepapers
Forrester's Asia Pacific Predictions 2021 Guide
Adopting a Next-Generation Data Security Approach
How to be a SOAR winner
3 steps to a well-rounded cybersecurity plan
Learn IT Service Management (ITSM) best practises
Events
- [Watch] Fulfilling the Promise of SD-WAN
- On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
- Live Event: A Paperless Business
- Corporate Risk and Fraud Detection - How to protect payments from fraud, featuring fireside chat with Bank of New Zealand
- Ceridian INSIGHTS - Experience the future of HR - Virtual Event
