Experts warned yesterday that the recently discovered Lovgate virus contains backdoor Trojan code that could allow hackers to remotely access compromised systems.
W32/[email protected] was first discovered on 23 February and has spread around the world, with the UK, Europe and Asia Pacific suffering the most widespread infection.
The worm propagates via email by replying to entries in the user's Outlook email client. Antivirus firm Network Associates has given it a 'medium' risk rating.
The company said that users will not immediately notice the infection because of the way Lovgate spreads using network shares.
It will copy itself to folders and subfolders using the following filenames:
Lovgate also packs a 77,824-byte Trojan file - called ILY.DLL, 1.DLL, REG.DLL or TASK.DLL - which opens a backdoor to port 10168.
Once the Trojan is installed it sends an email notification to the hackers who first propagated the virus informing them that the computer has been compromised.
Details and a clean up procedure for Lovgate can be found online at the Network Associates website here.
Using photocatalysts to convert carbon dioxide into usable energy such as methane or ethane
Trained on curated data from Moorfields Eye Hospital, the neural network also shows clinicians how it reached its judgement
Yokohama National University demonstrate technology that could lead to a fault-tolerant universal quantum computer
Top-of-the-range Threadripper 2990WX now available from Scan, Ebuyer, Overclockers, Novatech and Amazon