Another victim likely to elicit little sympathy...
By Robert Lemos
Published: 23 February 2004 09:15 GMT
A variant of the MyDoom virus aims to take down the website of the much-despised Recording Industry Association of America (RIAA).
The variant has started spreading, albeit slowly, and security experts expect it to target the main website of the music industry after seeing it already cripple the SCO website.
The variant, MyDoom.F, deletes several different types of files stored on an infected computer and aims to attack the websites of Microsoft and the Recording Industry Association of America with a flood of data, antivirus companies said on Friday.
Neither site may feel much pain, however, as the virus has failed to spread quickly.
Craig Schmugar, virus research manager for Network Associates' vulnerability emergency response team, said: "It is not very prevalent. We haven't seen anything beyond [a single] sample in the past 24 hours."
The original MyDoom spread through email in late January, infecting a new computer every time an unwary person opened the attached file containing the program. Between several hundred thousand and two million computers were infected, according to estimates.
Antivirus firms believe that the writer of the MyDoom.F virus is different from the person believed to have authored the first two versions of the code. A later worm, Doomjuice, spread to computers that were already infected by MyDoom and dropped copies of the original virus' source code. It's thought that the author of MyDoom.F used that code to write this new virus.
Vincent Weafer, senior director for the antivirus research centre at security company Symantec, said: "Right now it feels like someone took the original one and modified it. That's just a gut feeling."
The MyDoom.F virus spreads using a variety of subject lines and message text, usually attaching itself to the message as a Zip compressed file. The virus infects Windows computers when the user opens the file.
PCs compromised by the virus send out virus-laden email messages using random addresses found in a variety of files, such as cached Web pages and the Windows address book. The virus also deletes Word documents, JPG picture files, Audio Video Interleaved files, Excel spreadsheets and a few other types of files.
Robert Lemos writes for News.com
Regular testing of processes and procedures 3 Database administration • Maintain and monitor SQL servers • Perform backup and maintenance ...
The Software Localisation engineer must have attention to detail and the ability to create and adapt.The Localisation Engineer performs general ...
These services include providing support of the Operating System configuration and associated file systems, log files, processes, problem ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Is Your Enterprise Architected for Tomorrow's Growth?
Improving IT service delivery through an integrated approach to software asset management...
The Real Reason Executive Participation Creates IT Project Success
Information Management, BPM and Integration: Achieving Cost Efficiency in the Financial...
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
silicon.com staff Inbox: Social networking can help you secure a job Plus: Open source advocates hit back at CIOs and netbooks fail 'fit for work' test
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead