Friday, May 16, 2003

News: Fizzer worm spreads across the Internet
A very clever mass-mailing worm is spreading rapidly across the Internet.

Fizzer (w32.fizzer@mm) has many different components, each timed to trigger different processes, making it quite difficult to contain.

The worm spreads via e-mail and includes its own SMTP engine to bypass any security your e-mail client may have. Fizzer also spreads via Kazaa, a popular file-sharing application.

The worm establishes its own accounts on Internet Relay Chat (IRC) and AOL Instant Messenger, in order to await further instructions from the virus author.

Fizzer attempts to disable any antivirus program running at the time of infection. Systems infected with Fizzer could be used in distributed denial-of-service (DDoS) attacks on other computers.

Fizzer includes a keystroke-logging Trojan horse, which can be used to steal passwords words and credit card information.

Because Fizzer spreads via e-mail and Kazaa, contains a keystroke-logging Trojan horse, and could be used in a DDoS attack, this worm rates a 7 on the ZDNet Virus Meter.

Removal
Most antivirus software companies have updated their signature files to include this worm. This will stop the infection upon contact and in some cases will remove an active infection from your system. For more information, see Central Command, F-Secure, McAfee, MessageLabs, Sophos, Symantec, or Trend Micro.
http://zdnet.com.com/2100-1105_2-1001062.html

No comments:

Post a Comment

con·cept