Sunday, August 1, 2021

Another Microsoft Patch, Another Masquerade

Trying to capitalize on the latest mega-patch
released last week by Microsoft, a strain of the SWEN/Gibe virus is once
again posing as a Microsoft security patch in an effort to trick users into
running a so-called Trojan Horse that opens up computers to remote attacks.

But what makes this deceptive e-mail more dangerous this time is that it
poses as one of the actual Microsoft patches released last week, security
patch No. MS03-047.

“So, this Trojan is just jumping on the bandwagon of trying to get code
distributed via social engineering,” explained Ken Durham, Malicious Code
Intelligence Manager for Virginia-based iDefense.

“The Swen worm shows how effective this type of socially engineered
attack can be, continuing to spread to thousands of computers still today.”

Durham told internetnews.com that while Swen (formerly known as
[email protected] or [email protected]) was slow moving at first, it has
proliferated nearly 3 million times since late September with small- and
home-offices as well as the Far East region proving to be most vulnerable.

Part of the problem is that Swen arrives in the inbox as a .ZIP file that
needs to be executed and many companies still allow .ZIP files through the
firewall.

Durham said this new Trojan is actually a variant of the SDBot Trojan
horse family that provides the attacker with
complete backdoor access to a compromised computer. MessageLabs has given an
initial name to this new threat, Troj/Sdbot.R, aka SDBot.R.

As previously
reported
, Microsoft said it never e-mails software patches.

Similar articles

Latest Articles

Top Cloud Data Warehouse...

A cloud data warehouse is a service that collects, organizes, and often stores data that is used by organizations for different activities including data...

Data Governance Trends 2021

Data governance trends in 2021 reflect a changing data management landscape, one focused on centralization, improved data security, and streamlined remote access. In large...

Data Management Trends 2021

Data management trends in 2021 reflect the continuing digital evolution the business world has been undergoing for several years. Enterprises are responsible for managing...

Data Management Use Cases...

Comprehensive data management is critical for companies to pull insights from their data. Data analytics and business intelligence (BI) hinge on creative data management practices,...