Microsoft have released a security advisory for the Win32/Mywife.E@mm e-mail malware.
Microsoft wants to make customers aware of the Mywife mass mailing malware variant named Win32/Mywife.E@mm. The mass mailing malware tries to entice users through social engineering efforts into opening an attached file in an e-mail message. If the recipient opens the file, the malware sends itself to all the contacts that are contained in the system’s address book. The malware may also spread over writeable network shares on systems that have blank administrator passwords.
Processor manufacturer AMD has had a little problem with thier web site forum.amd.com, it would appear somwhow they have an iframe with a WMF vulnerability on the site. F-Secure have detailed this on their blog.
A new series of Bagle has started the rounds on the internet F-Secure are reporting
F-Secure upgraded Nyxem.E to Radar level 2 due to the increased number of reports.
The worm’s destructive payload activates on every third day of the month by replacing the content of user’s files with a text string “DATA Error [47 0F 94 93 F4 K5]”. Among these files are: doc, xls, mdb, mde, ppt, pps, zip, rar, pdf, psd and dmp.
Detailed Information for Nyxem.E
UPDATE: Please see Microsoft Security Advisory 904420 and F-Secure
F-Secure have posted via their blog a new e-mail worm spreading called Win32.VB.bi
Seeing this in my reader has not been pleasant lately… What can it be
Edit: Here is an excert from the Infoworld article
After being criticized for including rootkit-like cloaking software in its Norton SystemWorks product, security vendor Symantec (Profile, Products, Articles) Corp. is calling for an industrywide effort to define what the term “rootkit” actually means.
According to Russinovich, “motivation should be disconnected from the definition.” This opinion is at odds with the view of Symantec’s Weafer, who believes that the question whether the software developer had a malicious intent should count.