Bagle-B clobbers weary Net users | The Register

Skip to content

Security:

News Tools

Reg Shops

Top Stories

Read more top stories

Related Whitepapers

The Perfect (Virtual) Marriage
Deduplication and VMware
Enforce Your Email and Web Acceptable Usage Policies
Not Just Words
Making Green IT a Reality
Customer Perspectives on the Impact of Storage Vendor Decisions on Power, Cooling, & Space in Enterprise Data Centers
Search Engine Link Spam
Risks, Threats, Solution
Solution Brief: Reduce Energy Costs
With Green IT Solutions
Eliminating the Security Risk of Sending Confidential Information by Email
Email Encryption

The Register » Security » Anti-Virus »

Bagle-B clobbers weary Net users

More mass mailing worm madness

By John Leyden → More by this author

Published Tuesday 17th February 2004 18:01 GMT

Long-suffering Net users are finding their in-boxes clobbered again today with the appearance of yet another mass mailing worm.

Mercifully, Bagle-B is much less prolific than the recent MyDoom worm.

Bagle-B (AKA Tanx-A) normally arrives in emails with a subject line of "ID" followed by random characters and the message text: "Yours ID". Its payload includes a backdoor component which surrenders control over the infected machine to hackers. This comes in an attached .exe file with a randomly-generated filename.

Run this attachment on a Windows machine and your PC gets the pox. Mac or Linux boxes are immune.

The worm harvests email addresses from infected PCs and forwards itself to other prospective victims using a spoofed "From:" field.

Most AV vendors rate Bagle-B as a medium-level risk.

Standard precautions apply to defending against the bug: update AV signature files and (if you're an admin) consider introducing controls to block executables at the gateway. If you're a regular user, be careful of those unsolicited attachments, even from people you know. ®

Related Stories

Say hello to the Bagle Worm
MyDoom dies today (February 12)

Email Encryption report: Eliminating the Security Risk of Sending Confidential Information by Email

Track this type of story as a custom Atom/RSS feed or by email.

Post to Slashdot

Add to del.icio.us

Previous Article

From small embedded OS to the world's most used open mobile OS

whitepaper title

The Perfect (Virtual) Marriage

Get consistent virtual machine storage savings of 50% (often as high as 90%) with virtually no performance impact with NetApp deduplication..

whitepaper title

Enforce Your Email and Web Acceptable Usage Policies

Unmanaged employee use of email and the web can subject any organization to costly risks. Learn how clearly written Email and Web Acceptable Usage Policies (AUPs) can protect your business.

Whitepapers	Jobs
The Data Governance Maturity Model Managing the Performance and Availability of .NET Applications The Different Types of Air Conditioning Equipment for IT Environments [WP59] Enabling the Data Center Metamorphosis	Software Developer Infrastructure/Perl Developer (Financial Firm) Sr PERL Developer Full-time PERL / CGI Programmer for UNIX environment Business-minded Perl Hacker for Fast-Growing Biotech Company

Top 20 stories • All The Week’s Headlines • Archive • Search