Trojan program arrives as an attachment and can disable virus-protection software.
A new variant of the Bagle downloader virus is on the loose, according to E-mail security company MessageLabs Ltd. The company says the malware appears to have originated from a Yahoo Groups address and claims to have blocked almost 70,000 copies of the virus in the four hours since it was detected Tuesday.
Unsuspecting computer users trigger the downloader by opening the file, which arrives as an E-mail attachment. The downloader installs a Trojan program that checks a preset list of Web sites for updates and other files that it can download and execute. The Trojan is thus able to update itself or run other malware on the infected machine, depending on the files it finds on the sites it checks. The downloader also disables virus-protection programs and forwards itself to E-mail addresses stored on the victim's computer.
F-Secure Corp., an antivirus company, rates this Bagle variant at Level 2 on a three-level scale, with Level 1 being the most severe.
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
2017 State of IT ReportIn today's technology-driven world, "innovation" has become a basic expectation. IT leaders are tasked with making technical magic, improving customer experience, and boosting the bottom line -- yet often without any increase to the IT budget. How are organizations striking the balance between new initiatives and cost control? Download our report to learn about the biggest challenges and how savvy IT executives are overcoming them.