Storm Worm Botnet Lobotomizing AntiVirus Programs

The ever mutating, ever stealthy Storm worm botnet is adding yet another trick to its vast repertoire: Instead of killing antivirus products on target systems, it's now doing a hot fix with a memory patch to render them brain dead.

The finding was made by Sophos and was mentioned by Joshua Corman, a principal security strategist for IBM Internet Security Systems, Oct. 23 in his presentation here at Interop on the challenge of evolving cyber-threats.

...The strategy means that users won't be alarmed by their anti-virus software not running. Even more ominously, the technique is designed to fool NAC (network access control) systems, which bar insecure clients from registering on a network by checking to see whether a client is running anti-virus software and whether it's patched.

"It's running but brain-dead. It's worse than shutting it off," as it opens the door for Storm bots to waltz past even networks considered to be hardened with NAC, Corman said during his Interop presentation. Storm Worm Botnet Lobotomizing Anti-Virus Programs

Linked by shanmuga Friday, 26th October 2007 11:44PM

20% off Spyware Doctor and Registry Mechanic - use coupon code: pctools20. Click Here Now!

$10 off on Spy Sweeper. And shop safe this holiday season. Click Here Now!

15% on Norton AntiVirus 2008 - coupon code: 10NAV08. Click Here Now!

Back to: PC Security, privacy news

More News, Articles from elsewhere

Free Honeypot Client Could Sting Malware

What Firewalls Do & Donot Do

Opera Continues to Lead the Pack

Zonebak Trojan Removal

PCAntiSpyware Removal

SpyMaxx Removal

Qvdntlmw Toolbar Removal

The ultimate identity theft: house stealing

Fake Google Calender meeting invitations used in new spam attack

Spam Goes More and More Mobile

They Told You Not To Reply

Should Microsoft Throw Away Vista?

Angry Vista users vent over SP1 driver issues

Safari 3.1 Crashes On Windows XP, Users Complain

The New Browser War is Good for Microsoft

Block spam, phishing attempts in Outlook

Symantec fingers D Link for bot attacks

WhiteHat: 90% of Sites Still Vulnerable

Red Hat releases free security code

ValueClick to pay $2.9 million to settle spam complaint

Securitypills.com Removal

Want Vista SP1? Here is what to expect

99 Windows Vista Performance Tips and Tweaks

Set Internet Explorer and Firefox to maximize your security

Has Vista lost all credibility?

How to Remove SpyGuardPro (SpyGuardPro removal)

How to Remove AntispywareDeluxe (AntispywareDeluxe removal)

How to Remove Winfix Master (Winfix Master removal)

How to Remove AntivirusPCSuite (AntivirusPCSuite removal)

How to Remove AntivirusForAll (AntivirusForAll removal)

Security lapse exposes Facebook photos

Top Tips to Mobile Data Security

iPhone DoS vulnerability

Kaspersky launches Mobile Security 7.0 protection for smartphones

Mobile subscribers showered with spam

HOW TO: Synchronize Folders Between Computers

HOW TO: Set Up Dynamic DNS

HOW TO: Install Safari on Ubuntu with Flash and Shockwave!

HOW TO: Read The Wall Street Journal’s Web site for free

HOW TO: Secure Your EMail and IM Communications

The fine print

All trademarks, product names and company names or logos cited herein are the property of their respective owners. News content is the property of their respective authors/owners/publishers.

Malware Help. Org does not represent, warrant, or endorse the accuracy, reliability, completeness or timeliness of any of the information, content, views, opinions, recommendations or advertisements contained on, distributed through, or linked, downloaded or accessed from any of the information contained in this News Story.

By reading this you understand and agree that everything that is written in this article is for educational use only, and none of it should be used at any circumstances, and if you choose to use this information for any kind of action you take full responsibility for it and release Malware Help. Org (c) of any responsibility. If you do not agree to whats written here, LEAVE NOW!

Webmasters! Don't want your site's news/articles appear here, No problem, please drop me a line, Malware Help. Org will be happy to comply with your wishes.

About the RSS News feeds and News articles from other sites