News

Lovegate Worm Makes the Rounds

A new variant of the LoveGate worm is posing a multi-layered threat to corporate networks this week.

The worm is a mass-mailing virus with its own SMTP engine and a backdoor component that harvests highly insecure passwords. It is also able to spread through network shares.

LoveGate's authors use trickery to get users to open the message. It generates replies to existing e-mails to ensure that it is random. Body text can also contain the text, "I'll try to reply as soon as possible. Take a look at the attachment and send me your opinion," according to anti-virus vendor MessageLabs.

Attachments go by varying names, including billgt.exe, card.exe, docs.exe, fun.exe and joke.exe.

The backdoor component may open TCP port 10168, which allows the machine to be controlled remotely.

Several anti-virus vendors classified LoveGate as a medium threat.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Drops 'Solorigate' for 'Nobelium' in Ongoing SolarWinds Attack Investigations

    Microsoft this week described "three new pieces" of malware that were used in the SolarWinds Orion espionage attacks dubbed "Solorigate," although Microsoft security researches are now calling it "Nobelium."

  • Microsoft Universal Print Service Commercially Released

    Microsoft announced on Tuesday that its Universal Print service is now commercially released at the "general availability" stage worldwide.

  • Restoring a Backup to Dissimilar Hardware: 3 Things To Watch Out For

    Getting a new desktop looking and feeling like the old one used to take a long time, but modern backup applications have greatly streamlined the process. Still, there are a few things to keep in mind to avoid potential issues.

  • Black Box

    Microsoft Releases Windows Server 2022 Preview

    Microsoft announced during its Ignite event that Window Server 2022 is currently availability at the preview stage.

comments powered by Disqus