Quantcast
PC World: Technology Advice You Can Trust
Search
Browse by Topic
Subscribe to magazine

Magazine

Subscribe & Get
a Bonus CD

Customer Service

Audio & Video Business Center Cameras Cell Phones & PDAs Desktop PCs Gadgets Gaming HDTV Laptops Macs & iPods Monitors Printers Software Spyware & Security Storage Upgrading Windows Vista & XP
Resource Centers
Asus Notebook Center
Intel Technology Center
CDW Solution Center
Lenovo Laptop Showcase
Try It Free
White Paper Library
Webcast Library
Most Popular Search Terms
Most Popular Products
Most Popular Downloads
Today at PC World
Today @ PC World
News, opinion, and links from the PC World staff.
Recent entries in this blog:
Thursday, April 19, 2007 9:39 AM PT Posted by Erik Larkin

Undetected Warezov Worm on the March Again

I came in this morning to find nine e-mails with a subject of 'Mail server report' sitting in my inbox. They're of course malware, with the same type of subject and message body as previous malware blasts.

Thing is, I immediately recognized them - but the anti-spam and antivirus at my work network and my desktop didn't. They all made it through to my inbox no questions asked.

What's more, I uploaded the .zip file attachment - Update-KB4901-x86.zip - to Virustotal.com, a site I've been using more and more lately. Virustotal runs anything you upload through 31 different antivirus scanners. None of them caught this variant.

F-Secure put up a post today saying it recognizes this blast as the Warezov worm, but it didn't recognize the file I uploaded on Virustotal's scan.

Part of the reason for this universal blind eye may be that the attachment is in .zip form. It's entirely possible that many of these scanners might recognize the worm if I unzipped the file (which would give me an executable .exe file, according to F-Secure's post).

But I'm not going to test that on my work desktop - even saving the inactive .zip file to my desktop (so that I can upload it to Virustotal) gives me the willies. I know that the .exe shouldn't do anything unless I double-click it, but I'm playing it safe. Sort of.

It may also be that, as often happens, the jerks behind Warezov are churning out new variants faster than the antivirus programs can react.

In any case, this just goes to show that no matter how many security tools you use (and you should at least use some sort of antivirus program and firewall), your own good sense is still your best protection. Stay sharp.

Comments

There are new malware threats coming out all the time, and unless you have a good security suite, like one from Anonymizer.com, you are going to have a lot of problems battling those threats. It can be scary out there, but if you have the right protection, it doesn't have to be.

JimmyJackFunk21
April 19, 2007
12:11 PM PT
Post a comment Post a comment
Recent Posts
AT&T Pulls Free WiFi Offer Hours After Making It, Again
Facebook Beacon Watches You Online No Matter What
AT&T Lets iPhone Users Surf Its Hotspots Free, Again
iPhone App Maker Gets Hit With Major League Cease and Desist
T-Mobile 'Sidekick 2008' Coming July 30th: Reports
First Look: Amazon Video On Demand Service
Going Old School: Wood Guitar Meets Guitar Hero
Archives
View posts from:
 

PC World's Marketplace

PC World's Free Whitepapers

QUICK LINKS: cheap laptops cell phones laser printers HDTV reviews LCD TV Plasmas digital cameras laptop reviews security antivirus windows vista reviews digital camera reviews inexpensive desktop LCD wide screen monitors
tech news tech blogs community & forums laptop prices software reviews downloads
About UsContact UsAdvertiseASME GuidelinesNewslettersFAQIDG InternationalMagazine Customer Service
© 1998-2008, PC World Communications, Inc.Terms of Service AgreementPrivacy PolicyCommunity Standards
RSS FeedsXML

Visit other IDG sites: