The fast changing, email-harvesting Bagle worm is operating under a new alias. Versions of the virulent worm now include Bagle-AB, and Sophos warns of receiving many reports of it from the wild. The worm arrives under a variety of possible subject lines, including ‘Re: Msg reply’, ‘Re: Hello’, ‘Re: Yahoo!’, ‘Re: Thank you!’, ‘Re: Thanks :)’, ‘RE: Text message’ or ‘Re: Document’. And as well as attempting to turn off virus protection systems on your computer, it scans all drives recursively to extract email addresses for further mass-mailing of itself. The latest member of the Bagle family of worms displays the fake error message ‘Can’t find a viewer associated with the file’ when its attachment is executed. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.