virus
virus

Fortnight F worm has porn payload

Worm variant uses three-year-old security hole to add 'Nude Nurses' to browser

Iain Thomson

vnunet.com, 20 Jun 2003

Reports are coming in of a new variant on the Fortnight worm spreading via Outlook email.

An alert for Fortnight F has been released by Sophos and firms are starting to come across infections, even though Microsoft released a security patch three years ago to fix the hole that the worm uses.

Advertisement

"It's silly that this is still out there, three years on," said Neil Barratt, technical director of International Risk Management.

"It illustrates the change in mind-set needed over patching. Some administrators are still treating their servers like cars and only budgeting the time and money needed for a major patching session once in a blue moon."

The new variant uses JavaScript and Java applets to spread via Outlook emails that are set to carry and read HTML.

A hidden web page link is built into the signature file of the email. Once the mail is opened the link is opened as well, and the computer downloads the worm code using a flaw in Microsoft VM ActiveX.

The worm attempts to change registry keys and adds three new favourites to its victim's browser: Nude Nurses.url, Search You Trust.url and Your Favorite Porn Links.url.

Virus companies are releasing virus identity files for download from the web. The Microsoft patch is available here.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Have your say on this article

Further reading

Worm

Julia Roberts sexes down UK PCs

She may be a Pretty Woman, but the virus will totally trash your machine

virus

New Trojan in the wild

'Mystri-A' spies on your PC

Bugbear virus bears claws again

Variant of mass-mailing worm affects users of preview pane in Outlook

'Microsoft' worm has 13-day timebomb

Palyh virus spreading quickly in the wild

Related whitepapers

Related jobs

Most watched

eu flag

V3.co.uk weekly debrief, 6 Nov 09

This week, Europe decides what to do with illegal file sharers

Intel unveils its micro server platform

Small-enclosure systems take aim at hosting market

More video

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

Alcatel-Lucent logo

Summit: Networks swamped by information overload

Alcatel-Lucent's Neal Tilley talks about how enterprises and carriers can...

EU flag

Breach notification laws get green light

Privacy rights strengthened in Europe

Richard Thomas

Summit: Richard Thomas advises on handling the data deluge

Former Information Commissioner speaks out on government databases and data...

oracle sun

War of words escalates between EU and Oracle

Commission comes out fighting after criticism from Oracle and Washington

Primary Navigation