The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Special Forums > Windows & DOS: Issues & Discussions > Security Advisories (RSS) - Microsoft
Microsoft Security Advisory (912920): Systems that are infected with Win32/Sober.Z@mm Microsoft Security Advisory (912920): Systems that are infected with Win32/Sober.Z@mm
Google UNIX.COM
Forums Portal Register Forum Rules FAQContribute Members List Arcade Search Today's Posts Mark Forums Read


Security Advisories (RSS) - Microsoft Microsoft Security Advisories Via RSS News

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Microsoft Security Advisory (904420): Win32/Mywife.E@mm - 2/1/2006 iBot Security Advisories (RSS) - Microsoft 0 04-06-2008 01:50 AM
Microsoft Security Advisory (937696): Release of Microsoft Office Isolated Conversion iBot Security Advisories (RSS) - Microsoft 0 12-24-2007 06:00 AM
Microsoft Security Advisory (904420): Win32/Mywife.E@mm - 2/1/2006 iBot Security Advisories (RSS) - Microsoft 0 12-24-2007 06:00 AM
Microsoft Security Advisory (912920): Systems that are infected with Win32/Sober.Z@mm iBot Security Advisories (RSS) - Microsoft 0 12-24-2007 06:00 AM
Microsoft Security Advisory -- Win32/Mywife.E@mm Perderabo News, Links, Events and Announcements 0 01-31-2006 02:31 PM

Reply
 
Submit Tools LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 04-06-2008
iBot's Avatar
RSS Robot Girl
  

Join Date: Sep 2000
Posts: 14,302
Stumble this Post!
Microsoft Security Advisory (912920): Systems that are infected with Win32/Sober.Z@mm
Revision Note: Advisory published Advisory Summary:Microsoft is aware of the Sober mass mailer worm variant named Win32/Sober.Z@mm. The worm tries to entice users through social engineering efforts into opening an attached file or executable in e-mail. If the recipient opens the file or executable, the worm sends itself to all the contacts that are contained in the system’s address book. Customers who are using the most recent and updated antivirus software are at a reduced risk from infection by the Win32/Sober.Z@mm worm. On systems that are infected by Win32/Sober.Z@mm, the malware is programmed to download and run malicious files from certain Web domains beginning on January 6, 2006. Beginning approximately every two weeks thereafter, the worm is set to begin downloading and running malicious files from additional sites on the same Web domains. As with all currently known variants of the Sober worm, the worm does not appear to target a security vulnerability, but rather relies on the user opening an infected attachment. Microsoft added detection for the latest Sober variants in its December 2005 update to the Malicious Software Removal Tool and in the Windows Live Safety Center. Customers who believe that they are infected with Sober or are not sure whether they are infected should visit Safety.live.com and choose "Protection Scan" or run the latest version of the Malicious Software Removal Tool from either Microsoft Update or Windows Update to ensure that their systems are free of infection. Additionally, Windows OneCare from Microsoft provides detection for and protection against Sober and its known variants. Microsoft will release an updated version of the Malicious Software Removal Tool on January 10, 2006, that will further assist in the detection and removal of known malware threats including Sober and its known variants. See Microsoft Knowledge Base Article 891716 for additional details on how to deploy the Malicious Software Removal Tool with the latest definitions to help protect against malware. For mor

More...
Reply With Quote
Google The UNIX and Linux Forums
Forum Sponsor
Reply

« Microsoft Security Advisory (902333): Browser windows without indications of their or | Microsoft Security Advisory (951306): Vulnerability in Windows Could Allow Elevation »
Thread Tools
Display Modes
Linear Mode Linear Mode




All times are GMT -7. The time now is 05:18 AM.

The UNIX and Linux Forums RSS Feeds - Contact Us - The UNIX and Linux Forums - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited.
The UNIX and Linux Forums Content Copyright ©1993-2008 The CEP Blog All Rights Reserved -Ad Management by RedTyger Visit The Global Fact Book

Content Relevant URLs by vBSEO 3.2.0