The Storm Worm is back

Discussion in 'malware problems & news' started by Malcontent, Dec 24, 2007.

Thread Status:
Not open for further replies.
  1. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Suppongo tu sia un famoso (anzi famigerato) toscano? :rolleyes: :D
     
  2. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    Marco,
    Are you from Tuscany? My grandfather was born in Carrara.
     
  3. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    I'm from Umbria, next to Tuscany :)
     
  4. alfa1

    alfa1 Registered Member

    Joined:
    May 3, 2006
    Posts:
    61
    Hi, lucas1985!

    EraserHw lives in Perugia (Umbria) :D

    supponi bene!
     
  5. jlo

    jlo Registered Member

    Joined:
    Nov 29, 2004
    Posts:
    475
    Location:
    UK
  6. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Yes it is ;)
     
  7. IS200

    IS200 Registered Member

    Joined:
    Jan 9, 2007
    Posts:
    32
    Location:
    pc repair dublin
    Are people still foolish enough to download exe's from email and run stuff like striplights?
     
  8. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Yes- people doesn't changes :)
     
  9. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Yes, indeed :)
     
  10. risl

    risl Registered Member

    Joined:
    Dec 8, 2006
    Posts:
    581
    Level of caution and consideration is automatically lowered when people receive malware from a friend or other known contact. Perhaps they think it's some funny joke sent by a friend or so .. and the result is a network of dumb&infected people. Worst case is to receive this kind of virus from a person that is "generally known" as an expert with computers or computer security. Receiver will simply not understand to suspect anything if it's sent from his close friend who always preaches about security.

    Solution: don't be an expert with computer security and do not get any friends. If you simply have to make friends, avoid especially those that know about security. :rolleyes:
     
  11. ccsito

    ccsito Registered Member

    Joined:
    Jul 27, 2006
    Posts:
    1,579
    Location:
    Nation's Capital
    I would. LOL :rolleyes: ;) :D :oops: :-*
     
  12. midway40

    midway40 Registered Member

    Joined:
    Jul 24, 2006
    Posts:
    1,257
    Location:
    SW MS, USA
    The moral of this story is to always think with your brain, not with the...uh...other organ :D
     
  13. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,389
    Location:
    Milan and Seoul
    I don't, even though my system could deal with it. I've just discovered that using Gmail you are not allowed to send exe's attachments, and you won't receive any either.
     
  14. C.S.J

    C.S.J Massive Poster

    Joined:
    Oct 16, 2006
    Posts:
    5,029
    Location:
    this forum is biased!
  15. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    As best as possible, all the off topic discussion concerning another malware out break has been moved to the below thread.

    Most recent Cutwail/Bulknet malware discussion

    Let's do attempt to keep the thread topic based on the title Please and ask that members do consider their post contents in the future so un-necessary splitting of off topic converstions is required.

    Thanks,
    Bubba
     
  16. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,894
    Location:
    The Netherlands
    I have tested 2 Storm worm variants, and it´s the same old stuff, nothing scary about them, both try to load drivers. And as everyone (or most) of us know, you should only give your 100% trusted tools the ability to load a driver, or to perform other high risk stuff.

    @ solcroft

    I noticed the TF screenshot (post #2), but what happens if you allow the executable to be copied to the "sensitive area"?
     
  17. Malcontent

    Malcontent Registered Member

    Joined:
    Dec 30, 2005
    Posts:
    451
    Location:
    Cleveland, Ohio USA
    Storm switches tactics third time, adds rootkit

    http://www.computerworld.com/action...ArticleBasic&articleId=9054358&intsrc=hm_list

     
    Last edited by a moderator: Dec 28, 2007
  18. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,994
    Location:
    California
  19. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    They are getting lazy. I'm not seeing any major change of the sample for 2 days.

    This could mean two things:

    - They are satisfield of how many people they forced to join their botnet (also known as number of infections :rolleyes: )

    - Calm before the storm
     
  20. gerardwil

    gerardwil Registered Member

    Joined:
    Jan 17, 2004
    Posts:
    4,750
    Location:
    EU
    My guess: Calm before the storm

    I didn't have a sms warning yet but expecting it soon.

    Gerard
     
  21. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    I hate quoting myself, but someone from the underground maybe has read these words :D
     
  22. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    I don't even open the spam-email itself, which means I don't even see the attachment.
    Immediate DELETE without opening, that's all what spam-emails get from me. :)
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.