NetXactics, local Sophos distributor, has warned that experts at Sophos`s virus labs are warning of a new twist in the Bagle virus saga.
New variants, Bagle.Q (W32/Bagle.Q) and Bagle.R (W32-Bagle.R), use a different method of infection in an attempt to bypass anti-virus protection at the e-mail gateway. Sophos has received many reports of these worms spreading in the wild, and warns users to be especially wary when logging on.
Unlike most e-mail viruses, the two new Bagle worms do not carry e-mail attachments, making them difficult to spot. If a user opens the message - and their version of Microsoft Outlook has not been patched against a five-month-old critical vulnerability - malicious code is automatically downloaded from the PC which sent the "carrier" e-mail.
Once installed, the worms halt a wide range of security applications, potentially opening up your computer to further virus or hacker attack.
The worm will also attempt to spread via file-sharing networks and infect other executable files.
"Exploiting a security loophole in the popular Microsoft Outlook e-mail system means these worms have the potential to hit hard. Both home and business computer users need to make sure they are patched against all vulnerabilities," says Brett Myroff, CEO of NetXactics.
To prevent infection, Sophos recommends that users update their anti-virus software against the latest threats. Users should also patch against all security vulnerabilities. It is possible to check which Microsoft security patches need to be applied to individual PCs by visiting: http://www.microsoft.com/technet/security/current.aspx
Businesses can also protect themselves at their firewall, preventing computers on their network from downloading the worm from outside.
"Bagle is a wake up call about the need for holistic security. By keeping on top of security patches, anti-virus software updates and ensuring firewalls are properly installed, users can lessen their chances of getting hit," continued Myroff. "If you don`t patch yourself against these kind of threats, you shouldn`t be surprised if a worm bites you on the backside."
For more information about Bagle.Q and Bagle.R, visit Sophos`s Web site: http://www.sophos.com/virusinfo/analyses/w32bagleq.html
The patch against the Microsoft Outlook security vulnerability can be found at: http://www.microsoft.com/technet/security/bulletin/MS03-040.mspx
Share
NetXactics is a South African-based company, focused on the provision of security solutions. It is the sole distributor in Sub-Saharan Africa for UK-based Sophos Plc, one of the leaders in the provision of anti-virus and anti-spam software for the corporate environment. For more information, visit NetXactics at www.netxactics.co.za.
Sophos
Sophos is one of the world`s largest specialist developers of anti-virus and anti-spam software. Headquartered in the UK, the company designs solutions specifically to protect businesses and organisations, including large corporations, banks and governments, from viruses and spam.
Editorial contacts