Worm Entices Windows Users with Pics of a “Dead” Saddam Hussein   2/3/2005 - 966 views, 1 Comment

Summary: Security company Sophos is reporting that the new spam-engine worm, Bobax.H, is enticing Windows users to open (and thus unleash) it by offering what it alleges to be pictures of a dead Saddam Hussein, supposedly killed during an escape attempt. Targetting computers running Windows, ...

Previous Article « Use an Illegal Copy of This and it Erases All of Your Data
Read Next Article » Surfing the Net from Work? That Will Be $3.00, Please.

Security company Sophos is reporting that the new spam-engine worm, Bobax.H, is enticing Windows users to open (and thus unleash) it by offering what it alleges to be pictures of a dead Saddam Hussein, supposedly killed during an escape attempt.

Targetting computers running Windows, Bobax.H is one of those breeds of Internet worm which not only mails itself to any addresses which it finds on an infected computer, but also disables security and anti-virus software, and installs an email relay, which allows the computer belonging to the hapless, unwary user to be used to relay thousands if not millions of pieces of spam.

Bobax.H is able to do its dirty work by taking advantage of the Windows LSASS vulnerability, which was first reported 10 months ago. A patch is available, but apparently enough Windows users don’t regularly update and patch their systems to make it worthwhile to release such a worm.

So, for your unpatched Windows users, and you know who you are - get the patch! It’s available here.

Get FREE email alerts of new Internet Patrol stories!
    *We never share your email address with anyone

Email Address:
Date of first visit:
How you found us:

Be sure to watch for the confirmation email!

Subscribe to The Internet Patrol on your cell phone    Email the link for this page to a friend!

Read more:

»  Kama Sutra Worm Catches Windows Users in Compromising Position

»  Half-Million PCs Infected with Blackworm Code to Delete Files on February 3rd!

»  Osama Bin Laden Internet Worm a Dud

»  Newest AIM Opanki Worm says “LOL Look at Him”

For additional similar stories check out our archives on Virus & AntiVirus

 

1 Comment »

  1. I dont know if i have the same virus or not, but it did send itself to all my friends when i was connected, then it signed me off, when i tried to sign in again and type my email address the link automatically appears in the email address space and tries to sign but theres no password so it cant, but it seems to be a loop because it repeats itself… i have to press ctrl+alt+del and end messenger… i have tried many things to try to get rid of this virus but i cant… i dont know if it helps to give part of the link, but this is the last part “hanging_naked.php” thats all i know… Please help me

    Comment by Gonzalo — 2/24/2007 @ 1:48 pm

RSS feed for comments on this post.

Leave a comment

Warning! All comments which contain URLs and are clearly just spam to generate a link back to the URL will be deleted on sight. Don't bother wasting your time!

If you are going to include a URL in your comment,
please keep it under 25 characters in length,
or use TinyURL to shorten it before including it in your comment.

Line and paragraph breaks are automatic, your email address is never displayed.
HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

(required)

(required)


If you have not posted a comment here before, we apologize for having to ask you to enter the letters and numbers you see in the image above to validate your comment, but we are being attacked by thousands of comment form spams every day! You only need to do this once; once you have successfuly posted a comment here you will not be asked to do this again. Thank you for your understanding!

 
The Internet Patrol
Patrolling the Internet for You!