MYTOB variant fakes email errors

By

A new variant of the MYTOB worm has been discovered that pretends to be a legitimate email warning of a delivery error or email account problem.

A new variant of the MYTOB worm has been discovered that pretends to be a legitimate email warning of a delivery error or email account problem.


The worm, WORM_MYTOB.ED was the 100th variant to be identified since the MYTOB worm first appeared in February this year, security vendor Trend Micro has said in a statement.

The worm propagated by sending a copy of itself as an email attachment which it sent using its own Simple Mail Transfer Prorocol (SMTP) engine, the company said.

Email addresses were harvested from the Temporary Internet Folder Windows Address Book, as well as from files with certain extension names. The worm was also able to generate email addresses by combining names and domains that had previously been gathered.

According to the company, once infected, the worm prevented users from accessing antivirus sites by redirecting connections from the local machine.

MYTOB.ED made a system vulnerable to further attacks by using Internet Relay Chat (IRC) backdoors. This allowed a remote user to download and execute files on an affected machine.

Trend Micro issued a medium risk alert for MYTOB.ED which has been reported in Europe and Asia Pacific.

Got a news tip for our journalists? Share it with us anonymously here.
Tags:
emailerrorsmytobsecurityvariant

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Reclaim Control with Cloud Repatriation: Know the Signs
Reclaim Control with Cloud Repatriation: Know the Signs
FlexPod: Powering the Future of Private Cloud
FlexPod: Powering the Future of Private Cloud
Transform with Confidence: Insights from Datacom’s 2024 Cloud Report
Transform with Confidence: Insights from Datacom’s 2024 Cloud Report
Unlocking Growth in the Cloud: Key Insights from Datacom’s 2024 Cloud Report
Unlocking Growth in the Cloud: Key Insights from Datacom’s 2024 Cloud Report

Events

Most Read Articles

Rogue communication devices found in Chinese solar power inverters

Rogue communication devices found in Chinese solar power inverters
Circles.Life fined over identity checking failures during mobile porting

Circles.Life fined over identity checking failures during mobile porting
Vic gov to spend $100m on cyber security

Vic gov to spend $100m on cyber security
M&S says hackers broke in through third-party contractor

M&S says hackers broke in through third-party contractor
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?