- Recommend:
- 0 Comments
Nimda Poised to Reappear, Say Researchers
Worm set to again propogate via e-mail, starting Friday morning.
Researchers have discovered a third vector to the Nimda worm, which is set to propagate again through e-mail at 1:00 a.m. Eastern time Friday.
"We rechecked the code base to Nimda, and we found a code set that is supposed to respread Nimda through e-mail systems starting ten days after machines were first infected," said Oliver Friedrichs, director of engineering at the Attack Registry and Intelligence Service. That service is sponsored by SecurityFocus, a business security firm in San Mateo, California.
Ten days after first infecting machines, the worm will attempt to respread itself through readme.exe attachments, with the same payload as its original mail-based infection.
The impact could be significant or minute, depending on how well the IT community has cleaned systems and patched Microsoft Internet Information Server and Outlook programs. The 10-day vector will likely be less severe than Nimda was the first time because more systems have been patched against the vulnerabilities, Friedrichs said.
But because Nimda has spread itself to so many places on computers, networked systems may not have been cleaned enough to prevent widespread mailings of the virus. Therefore, Friedrichs advised IT managers to do the following:
- Double-check their patches.
- Make sure their
antivirus software blocks Nimda.
- Block executables files at the e-mail
gateway.
- Alert users not to preview or open any attachments that say
readme.exe.

For more enterprise computing news, visit Computerworld. Story copyright © 2011 Computerworld Inc. All rights reserved.
Would you recommend this story? YES NO
- Recommend:
- 0 Comments
-
ThinkPad Edge E420 Lenovo Style in an Affordable Package
Buy now direct from Lenovo -
ThinkPad X220 Fast and light, with great input ergonomics and battery life, this powerhouse ultraportable is best-of-breed.
Buy now direct from Lenovo -
ThinkPad X120e One of the best netbooks ever, X120e has the best netbook keyboard ever--nothing else comes close
Buy now direct from Lenovo
- Nimda Worm Continues Attack
- After Conficker: A PowerPoint Zero-Day Flaw
- Gmail's New Features: A First Look
- Multi-Fanged Worm Starts Global Attack
- 'Here you Have' Virus Tries to Delete Your Security Software
- 4 Security Tips Spurred by Recent Phishing Attacks on Gmail, Hotmail, and Yahoo
- Duqu: New Malware Is Stuxnet 2.0
- 12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
- Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.


















