Microsoft advisory on Sober “Awakening”



Microsoft has posted a security advisory (912920) on the previously reported “awakening” of the Sober worm, expected January 6th.

Systems that are infected with Win32/Sober.Z@mm may download and run malicious files from certain Web domains beginning on January 6, 2006

Further they give the following note….

Microsoft will release an updated version of the Malicious Software Removal Tool on January 10, 2006, that will further assist in the detection and removal of known malware threats including Sober and its known variants. See Microsoft Knowledge Base Article 891716 for additional details on how to deploy the Malicious Software Removal Tool with the latest definitions to help protect against malware.

So, four days after it’s release they’ll have an update for the malicious software removal tool, hopefully with new signatures for the latest variant. How convenient, that is their scheduled security patch day.

This is the kind of coordination you would hope for from virus writers to conveniently release a new version just a couple days before a patch. Contrast this to the wreckless release of a security vulnerability last week in wmf files…. (Ok sarcasm off…..)

Related Posts

Blog Traffic Exchange Related Posts
  • How to Remove SoftSoldier | Soft Soldier Removal Guide Soft Soldier is yet another entry in the long wini line of rogue antivirus applications. ( TrustFighter TrustFighter Removal Guide, TrustSoldier removal guide and the following others... SafeFighter (Safefighter Removal), TrustCop (TrustCop Removal Guide), SecureWarrior (SecureWarrior Removal), SecurityFighter (SecurityFighter Removal), SecuritySoldier (SecuritySoldier Removal) and it also has gone under other......
  • Zotob Worm According to The Sans handlers diary, a worm exploiting one of the security vulnerabilities disclosed last week by Microsoft, is in the wild and spreading. The worm tagged as zotob.a exploits the ms05-039 vulnerability. (Sans reminds us that ms02-039 was the vuln. targetted by the slammer worm. Interesting coincidence.) They......
  • How to Remove Windows PC Defender | Windows PC Defender Removal Windows PC Defender is a rogue antivirus application that resembles the legitimate antispyware known as Windows Defender from Microsoft. Their intent apparently is to mimic the look an theming of that application to trick potential customers into trusting and downloading (and paying for) their product. It is a clone of......
Blog Traffic Exchange Related Websites
  • Encryption: Never Leave Home Without It As portable drives have gotten physically smaller and larger in storage capacity, they've become an indespensible gadget for many.  If you use yours to store vital and sensitive information, you need to secure that information with encryption.  I should not need to tell you about the long list of......
  • World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
  • Five Ways to Get Cheap and Free Microsoft Software Most of us get Microsoft Windows and Microsoft Office with our computer systems when we buy our computers and really have no idea how much of the price of a computer system those two pieces of software represent. If you've ever went out and tried to buy a copy of......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site