About security impotence before Storm worm

After a 13-hour "break", Storm's poison worm continued to violently bombard the world's Internet users. This time, its "victim bait" is the American Labor Day and hot women like Beyonce and Rihanna.

Over the past 3 months, Storm has been tirelessly bombarding the Internet. The number of spams released by this worm is unspeakably numerous and is put into giant campaigns.

According to Vinoo Thomas, an expert with security firm McAfee, during the latest distribution campaign, Storm impersonated an e-card to congratulate the US Labor Day.

" Deep senders have used tags in HTML to disguise links, so careless users will not notice ".

If you click on this hidden link, the user will be directed to a Happy Labor Day website. Here, a "destructive cocktail" will be automatically downloaded to the victim's computer.

About security impotence before Storm worm Picture 1 " They not only exploit vulnerabilities within Microsoft software but also target QuickTime and WinZip buffer overflows ," Thomas said.

Because third-party applications like WinZip are rarely updated with patches, the risk of hackers successfully exploiting the vulnerability is higher. " Users are too lazy and too much work to think about downloading the update and then patching it ."

Just that. Storm's author has shown them to be masters of malware. In order to increase the effectiveness of the attack, they not only took advantage of the US Labor Day but also distributed a series of fake emails, inside the link to watch music videos of top female singers today. like Beyonce Knowles, Kelly Clarkson and Rihanna.

Error in humans

According to Sophos, the title of these emails is usually " Very hot new video ", " Video can't be better " . Besides the beautiful women, Storm also takes advantage of the names of many rice artists. such as The Eagles, Foo Fighter and R. Kelly bands.

If you click on the video link, users will be redirected to a web page containing malicious script and Trojan code, ready to turn their computer into Zombie.

" Obviously hackers are constantly updating the current situation to deceive innocent users. They know very well what is being taken care of online, so although this technique is nothing new in technology, but users are still cheated, "said Graham Cluley, an analyst at Sophos.

The "fox" level even allows them to take a break when humanity is on the holiday and spend less time on the network.

" Beginning at 9:45 pm on Friday night last week, Storm's botnet network was suddenly quiet. They stopped distributing emails, no e-cards, no fake warnings . Nothing. However, only 13 hours. after that, the reel started again . "

Trong Cam

5 ★ | 1 Vote

May be interested

  • Storm was 'stronger' than the BlueGene supercomputer dozens of timesPhoto of Storm was 'stronger' than the BlueGene supercomputer dozens of times
    a researcher claims that the power of the storm worm botnet has now overcome the power of ibm's most powerful blue gene supercomputer.
  • P2P worms attack Skype usersPhoto of P2P worms attack Skype users
    the most popular voip service provider for skype users is being attacked by a new worm that spreads through the p2p chat feature of this internet phone software.
  • The internal virus spreads the fastest everPhoto of The internal virus spreads the fastest ever
    from the end of last week to the present, netizens using chat tools yahoo (im) fluttering before the arrival of a virus with the speed of infection is rated as the fastest ever and proved very good. dengoures.
  • Virus destroys data that is spreading in VietnamPhoto of Virus destroys data that is spreading in Vietnam
    on the afternoon of october 10, according to the network security center bkis, the virus destroyed w32.chir.b@mm data, which infested more than 3,000 computers since september. in recent days, this virus has caused damage to many businesses
  • Storm Deep uses YouTube to spreadPhoto of Storm Deep uses YouTube to spread
    youtube's 'invite friends to watch videos' feature recently has been used by spammers to spread spam with dangerous 'worm' implants.
  • Skype continues to be 'raided'Photo of Skype continues to be 'raided'
    within a month, skype was twice attacked by hackers using trojans, and the way they used it was a fake software called skype defender.