Watch out for the Invalid worm

by James Middleton

31 Aug 2001

Yet again a bogus Microsoft Security Bulletin is being used to harbour a mass mailing virus.

Dubbed the Invalid worm, this mass mailing virus randomly encrypts executable files, effectively rendering them unusable.

Further reading

Only last month a variant of the destructive Leave worm was using the same method of propagation, when it was doing the rounds as a fake Microsoft security bulletin.

The Invalid worm virus appears in an email pretending to be from Microsoft Technical Support. The subject line of the message is along the lines of "Invalid SSL Certificate".

The body of the message contains text which tries to socially engineer a user into running an attached executable, sslpatch.exe.

This is done under the pretence that it will secure their machine against a buffer overrun in Internet Explorer, which would allow a hacker to attack their computer.

Once activated, the virus will scan the user's hard drive for all files featuring a '.ht' extension. It will then scan these files for email addresses and send itself to all the addresses it finds.

Most antivirus companies have already released an update to protect against this virus. It is available from the relevant vendor's website.

Topics:
Security

Do you agree?

Add your comment

Your name:
Your email address:	We won't publish your address
Your comment title:
Your comment:	By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Submit your comment

Get the latest news headlines direct to your inbox

Flame virus poll

Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?

Yes, the government has been proactive in addressing threats

28%

Yes, the strong UK technology sector helps ensure access to top-level equipment and expertise

No, the government is lagging behind in adequately protecting the UK infrastructure

13%

No, there’s always exploits that can be attacked

58%

Features

The V3 Hot Seat: Imperva CTO and co-founder Amichai Shulman

Quick guide to Flame malware attack

Quick guide to cookie law compliance

ICO sends out mixed messages on cookie law

More features

Orange San Diego video demo

Orange and Intel talk us through the ins and outs of their San Diego smartphone

Sign up to our daily or weekly newsletters

Follow @V3_co_uk

Case studies and reports

Colour printing: why the bill keeps outstripping the budget

The wrong printers, for the wrong tasks on the wrong contracts

Magic quadrant for business intelligence platforms

Who leads the BI pack and who should we be watching out for?

Technology jobs

IT Service Desk Technician

Working within the central Service Desk Team of a well...

GIS Technician

GIS Applications Engineer - circa £35k Excellent opportunity...

Senior C++ Developer x 2 - Embedded C++ Developer

Senior C++ Developer x 2 - Senior C++ Software Engineer...

Information security SOC specialist for world leading organisation

We are actively searching for Information security specialists...

White paper library
Latest white papers

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

More white papers

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

About us:

Business & technology web sites:

Blogs & community:

Reviews:

Software downloads:

Tools & resources:

Accreditation:

Digital Publisher of the Year 2010

Friend's email address	To send to more than one email address, simply separate each address with a comma.
Your email address
Message