Author Topic: New worm -- infected email looks like FBI document  (Read 2927 times)

0 Members and 1 Guest are viewing this topic.

Starfighter

  • Guest
New worm -- infected email looks like FBI document
« on: November 25, 2005, 04:50:03 AM »
Beware new computer worm

Bogus email looks like FBI document
Spreads to contacts in address book

It's being called the worst computer worm of the year — a fast-spreading Internet threat that looks like an official email from the CIA or FBI but can leave your computer wide open to intruders.

Full story can be read here:

http://www.thestar.com/NASApp/cs/ContentServer?pagename=thestar/Render&c=Article&cid=1132786213516&call_pageid=968332188492
« Last Edit: November 25, 2005, 04:53:04 AM by Starfighter »

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89331
  • No support PMs thanks
Re: New worm -- infected email looks like FBI document
« Reply #1 on: November 25, 2005, 02:26:24 PM »
This has already got a thread in the forums here - http://forum.avast.com/index.php?topic=17584.0;topicseen
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.5.6116 (build 24.5.9153.762) UI 1.0.808/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

PigDog

  • Guest
Re: New worm -- infected email looks like FBI document
« Reply #2 on: November 25, 2005, 03:48:03 PM »
It must be a very effective social engineering method.  My corporate e-mail address has been getting hit about 10 times an hour and I keep it well guarded.  Must mean that other company systems are getting infected, not just individuals. 

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33930
  • malware fighter
Re: New worm -- infected email looks like FBI document
« Reply #3 on: November 25, 2005, 04:02:27 PM »
Hi PigDog,

As you may read here: http://labmice.techtarget.com/security/socialengineering.htm, social engineering is still one of the most effective forms of hacking, especially with end-users that are not trained to react in an appropriate way.

It works through the Shiva method. For instance you go for the low hanging fruit first, phone  someone, say you see their computer is at danger, they will try to help you any way you want. The computer is a rock solid bastion, the person behind it maybe is another  n33b, then the data on this secured computer maybe not so secure at all. Use your fantasy or train the end-user to work according to strict protocols: never talk to strangers, always say you will call back, secure hardware physically, etc. etc., else the human firewall is broken.

polonus
« Last Edit: November 25, 2005, 04:07:48 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!