News

Lovegate Worm Makes the Rounds

A new variant of the LoveGate worm is posing a multi-layered threat to corporate networks this week.

The worm is a mass-mailing virus with its own SMTP engine and a backdoor component that harvests highly insecure passwords. It is also able to spread through network shares.

LoveGate's authors use trickery to get users to open the message. It generates replies to existing e-mails to ensure that it is random. Body text can also contain the text, "I'll try to reply as soon as possible. Take a look at the attachment and send me your opinion," according to anti-virus vendor MessageLabs.

Attachments go by varying names, including billgt.exe, card.exe, docs.exe, fun.exe and joke.exe.

The backdoor component may open TCP port 10168, which allows the machine to be controlled remotely.

Several anti-virus vendors classified LoveGate as a medium threat.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Surface and ARM: Why Microsoft Shouldn't Follow Apple's Lead and Dump Intel

    Microsoft's current Surface flagship, the Surface Pro X, already runs on ARM. But as the ill-fated Surface RT showed, going all-in on ARM never did Microsoft many favors.

  • IT Security Isn't Supposed To Be Easy

    Joey explains why it's worth it to endure a little inconvenience for the long-term benefits of a password manager and multifactor authentication.

  • Microsoft Makes It Easier To Self-Provision PCs via Windows Autopilot When VPNs Are Used

    Microsoft announced this week that the Windows Autopilot service used with Microsoft Intune now supports enrolling devices, even in cases where virtual private networks (VPNs) might get in the way.

  • Most Microsoft Retail Locations To Shut Down

    Microsoft is pivoting its retail operations to focus more on online sales, a plan that would mean the closing of most physical Microsoft Store locations.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.