Socially Engineered Virus “Storm Worm” Hits U.S. Harder Than Predicted

Security analysts predicted that this Trojan worm, described in a previous blog post entitled “More on Socially Engineered Viruses“, would not infect as many U.S. systems as in Europe, thanks to a time difference and advance warning. But it appears that the opposite has happened.

According to a recent article in PCMag.com, the worm has infected more systems here than in Europe, and it was only introduced to our systems this past Friday.

Originally propagated on the heels of a killer European storm, the worm has been seen in the wild with the following subject lines: “230 dead as storm batters Europe,” “A killer at 11, he’s free at 21 and…”, “British Muslims Genocide,” “Naked teens attack home director,” and “U.S. Secretary of State Condoleezza Rice has kicked German Chancellor Angela Merkel”.

Talk about superb social engineering — the “naked teens” subject line is new, and probably a real “winner” for the U.S. in terms of delivering the payload!

When one of four attachments is opened — Full Clip.exe, Full Story.exe, Read More.exe, or Video.exe — the worm installs the “wincom32” service, and injects a payload, passing on packets to destinations encoded within the worm itself.

As mentioned in my previous blog post, education of your family and/or staff is the only way to protect yourself from these socially engineered traps.

==========

To return to the main page of the blog, click here. To return to the blog Index, click here.

WordPress Themes