New IM Worm Talks In Tongues - InformationWeek
IoT
IoT
News
News
8/25/2005
01:48 PM
50%
50%
RELATED EVENTS
[Best Practices] Managing Multiple Clouds
Jul 26, 2017
Putting all your eggs in one cloud basket is risky, because clouds are not immune to denials of se ...Read More>>

New IM Worm Talks In Tongues

A worm running through Microsoft's instant-message network is dropping spyware bots onto compromised Windows PCs using new multilanguage smarts, security vendors said Thursday.

A worm running through Microsoft's instant message (IM) network is dropping spyware bots onto compromised Windows PCs using new multi-language smarts, security vendors said Thursday.

Although the Kelvir.hi worm is not an extremely high-level risk -- Symantec, for example, lists it as a "2" in its 1 through 5 ranking -- it takes a unique tack to language, for it speaks in tongues.

Ten to be exact.

Kelvir.hi, which spreads via Microsoft's MSN IM network, checks for the system's default language, then periodically blasts out messages in that language to contacts hijacked from the victim's machine. If Dutch is the default language, for instance, the message reads "lol ik heb je foto gevonden;" if English, "haha i found your picture!"

The message may also contain a link to the worm; if the recipient clicks on the link, his machine's infected.

Kelvir.hi also drops a copy of Spybot onto the PC; this spyware-style bot hides in the background and listens for commands transmitted by the attacker. Those commands can tell the bot to scan for specific files, download or upload files, steal passwords, or even log all keystrokes.

Other languages detected and used by Kelvir.hi include French, German, Greek, Italian, Portuguese, Swedish, Spanish, and Turkish.

Most anti-virus vendors have already updated their definition files to detect and delete Kelvir.hi.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
IT Strategies to Conquer the Cloud
Chances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll