New Malware Security Alert Issued

For info:

June 3, 2005

Security experts are warning of a new coordinated attack utilizing malware spread mainly through email attachments.

The attack involves 3 trojans, Win32.Glieder, Win32.Fantibag and Win32.Mitglieder which appear to coordinate their attack as they spread from computer to computer.

Glieder is the initial malware that infects a home computer, changing settings that allow the two other malware, to enter your computer.

The Fantibag trojan then disables security features and changes network features, preventing both security programs and Windows from communicating with their respective update/patch sites.

The Mitglieder trojan then opens a "backdoor" and acting as a proxy, directs all traffic to known sites, where keystrokes and tracking is saved for later examination and possible identity theft usage. The trojan can also spread spam utilizing the infected users email accounts.

It is believed spammers are paying trojan developers 5-10 Euros for each PC "captured".

If you are unable to connect to WindowsUpdate and any of your security software update sites, it is recommended you immediately disconnect from the internet and check/decontaminate your system utilizing a disk containing updated antivirus software and definitions.

good luck