[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security Alert: The Gigger Worm

PureBytes Links

Trading Reference Links

NAV 1/9/02 update nails JS.GIGGER worm.
----- Original Message -----
From: "Mark Jurik" <mark@xxxxxxxxxxxx>
To: "'Omega List'" <Omega-list@xxxxxxxxxx>; "'Realtraders'"
Sent: Monday, January 14, 2002 9:18 PM
Subject: Security Alert: The Gigger Worm

> This virus arrives as an email attachment or embedded JavaScript inside an
email message. It tries to reformat your hard drive. To identify the GIGGER
worm, the email header looks like this ...
> Subject:    Outlook Express Update
> Message Body:    MSNSofware Co.
> Attachment:    MMSN_OFFLINE.HTM
> The HTM file contains the worm. Among other things, GIGGER adds the line
"ECHO y|format c:" to your AUTOEXEC.BAT file. Once this line has been added,
if you reboot your computer, your hard drive will be formatted during the
boot sequence without prompting you.
> It attempts to propagate in several ways:
> * e-mailing to all names in MS Outlook address book
> * includes itself in all e-mails using ME Outlook Express
> * sends itself using MS messaging program, MAPI
> * spreads itself using mIRC chat clients
> * copying itself over MS network shares
> * Do not open unsolicited attachments
> * Download anti-virus updates
> For more information....
>  http://vil.nai.com/vil/virusSummary.asp?virus_k=99301