The newest version of MyDoom does not even have a file attached to it, making it look even less suspect, and less worm- or virus-like.

Instead, it exploits one of the more recently discovered holes in Internet Explorer, through which clicking on a URL can cause a file to be downloaded to the unsuspecting user’s computer. Once downloaded to the user’s machine, the file executes, harvests email addresses, and starts spewing spam from the user’s computer.

The MyDoom email spam is sometimes appearing to come from PayPal, bearing a message which says “Congratulations! PayPal has successfully charged $175 to your credit card. Your order tracking number is A866DEC0, and your item will be shipped within three business days.

“To see details please click this link.”

Of course, clicking the link causes the program to be downloaded to your machine.

Microsoft says that if you are using XP, and you have Service Pack 2 for XP installed, that you are at “reduced risk” (how comforting).

You can read more about this here.

Get New Internet Patrol Articles by Email!

We respect your email privacy | Powered by AWeber Email Marketing

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us

Venmo us

Paypal us

 

More from the Internet Patrol:

New Malware Spam Thanks You for Purchasing and Shopping with Them

New iWorm Worm Specifically Targets OS X - How to Know if Your Mac is Infected

Urgent Microsoft Vulnerability Update Patch for All Versions of Windows

Woman Wins $10,000 from Microsoft Over Unauthorized Windows 10 Upgrade

Does Microsoft Windows 10 Technical Preview Really Include a Key-Logger? Yes

Transfer Files and Photos, and Send Messages, between iOS and a Windows PC with Intel Unison

Microsoft Sneaks Update to Windows 10 on Users

How to Delete Internet History and Search History from Internet Explorer, Safari, IE7, Firefox and G...

Share the knowledge