Mimail Damage Mounts

The Mimail virus is making its way up the ranks of the most damaging viruses and worms to date, according to a security firm that keeps track of malware.

Mimail is currently the fifth most damaging malware in a malware damage database maintained by the U.K.-based mi2g Intelligence Unit. Worldwide economic damage from Mimail is estimated at $8.85 billion worth of productivity losses and business interruption, according to mi2g, a digital risk assessment firm.

Mimail now trails only Sobig, Klez, Yaha and Swen in the rankings of the most damaging viruses and worms, according to mi2g. Mimail, which affects only Windows users, has seen a huge surge in damage from the last two of its 10 variants. Mimail.J and Mimail.I both appeared in the last week.

MessageLabs, an e-mail security services company, put out a high-level warning this week alerting customers to the dangers of the Mimail.J variant. "[The] extent of Mimail.J overtakes other variants of the worm," MessageLabs wrote in its alert.

The worm arrives as an attachment with a forged sender address, in many cases appearing to have come from PayPal, the payment service for the popular Ebay auction site.

The executable attachment launches a program that instructs users to update their PayPal account with a credit card number, social security number and mother's maiden name. According to mi2g, the Mimail method is more sophisticated than similar previous efforts, which sent victims to a Web page to fill in their information. In those cases, victimized companies could pressure ISPs to shut down the Web site.

"Five years ago hackers and virus writers carried out most of the attacks to demonstrate intellectual prowess. The metamorphosis in motives has definitely been towards financial fraud and extortion activity," DK Matai, mi2g executive chairman, said in a statement.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.


  • Microsoft Warns IT Pros on Windows Netlogon Fix Coming Next Month

    Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" patch distribution arrives.

  • Microsoft Nudging Skype for Business Users to Teams

    Microsoft on Thursday announced some perks and prods for Skype for Business unified communications users, with the aim of moving them to the Microsoft Teams collaboration service instead.

  • How To Improve Windows 10's Sound and Video Quality

    Windows 10 comes with built-in tools that can help users get the most out of their sound and video hardware.

  • Microsoft Offers More 'Solorigate' Advice Using Microsoft 365 Defender Tools

    Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.

comments powered by Disqus