.NET virus uncovered

The first virus to target Microsoft's .NET initiative has already been activated, even though the technology has yet to be released.

The proof-of-concept virus, called W32.Donut, was sent by Czech author Benny, from the 29a virus-writing club, to various anti-virus vendors, according to a spokesman from security company Sophos.

Benny's previous works include Lindose, the first virus to target Linux and I-Worm.Universe credited with infiltrating computer systems in the FBI and Microsoft's own offices.

A Sophos spokesman said: "This is the first virus that attempts to infiltrate .NET but it is not something most people are likely to encounter. It was sent to us late yesterday afternoon so we can examine it and then issue protection against it."

However, Donut cannot infect systems via email or web browsers. Instead users must save the 8K file to the hard drive from where the virus searches for .NET executables to attack.

While it has been graded as a low risk, Andre Post, senior research at Symantec, said the real threat is that it proves virus writers are already thinking up ways to infect Microsoft's latest technology.

He added: "As this is not in the wild we shouldn't be worried about it. But it does indicate that virus writers are actively seeking entry into .NET and that is a worry."

Microsoft was unavailable to comment.