Lovgate risk increases

by Robert Jaques

20 May 2004

Security experts have raised risk assessments for the recently discovered virus W32/Lovgate.ab@MM, also known as Lovgate.ab.

Researchers from McAfee's AVERT antivirus team said they had moved Lovgate.ab up to medium risk after receiving more than 100 samples of the worm from customers and virus-generated mail around the world in the first few hours after its discovery yesterday.

Further reading

Lovgate.ab is a prolific internet worm that spreads via email, sending itself to addresses found on the victim's machine in the form of a .zip archive, or as an .exe, .scr, .pif, .cmd or .bat file.

The zip file may have a .zip or .rar extension, and may also be dropped to the root of local and mapped drives.

Once activated the worm attempts to deliver its payload, which potentially opens infected machines to remote users through a network share.

"The worm then attempts to drop a backdoor component, copy itself to poorly secured remote shares and create a share on the victim's machine called 'MEDIA'," warned AVERT.

"If the worm is able to copy itself to remote shares, it attempts to execute itself remotely. The worm also adds a registry key that helps it activate at the system startup."

The worm has also been found to terminate processes associated with antivirus and security products.

Further information from AVERT can be found here.

Topics:
Security

Do you agree?

Add your comment

Your name:
Your email address:	We won't publish your address
Your comment title:
Your comment:	By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Submit your comment

Get the latest news headlines direct to your inbox

Flame virus poll

Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?

Yes, the government has been proactive in addressing threats

30%

Yes, the strong UK technology sector helps ensure access to top-level equipment and expertise

No, the government is lagging behind in adequately protecting the UK infrastructure

12%

No, there’s always exploits that can be attacked

57%

Features

It's time to change tax system to bring technology manufacturing back to the UK

The V3 Hot Seat: Imperva CTO and co-founder Amichai Shulman

Quick guide to Flame malware attack

Quick guide to cookie law compliance

More features

Orange San Diego video demo

Orange and Intel talk us through the ins and outs of their San Diego smartphone

Sign up to our daily or weekly newsletters

Follow @V3_co_uk

Case studies and reports

Social networking: a guide for IT managers

Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them

Mitigating the risks of IT change

The importance of understanding your infrastructure

Technology jobs

Principle Network Design Engineer

Key skills for this role include a comprehensive understanding...

Senior Information Security Consultant

Fantastic opportunity for an Information Security Professional...

VB.NET Developer Cheshire

VB.NET Developer / SQL / VB6 / ASP / XML / Cheshire...

Security Architect

Fantastic opportunity for a high calibre Security Architect...

White paper library
Latest white papers

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

More white papers

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

About us:

Business & technology web sites:

Blogs & community:

Reviews:

Software downloads:

Tools & resources:

Accreditation:

Digital Publisher of the Year 2010

Friend's email address	To send to more than one email address, simply separate each address with a comma.
Your email address
Message