myITforum.com
Welcome to myITforum.com Sign in | Join | Help
in Search
Site Home Home Bloggers List Blogs Photos Downloads

Harry Waldron at myITforum.com

Sharing Security Developments, and Best Practices for corporate and home users

New Mytob variants spreading in the wild

 Recent MyTob variants are beginning to spread and email messages as follows should be avoided:

AVOID THESE EMAIL MESSAGES

Subject: (any of the following)
• You have successfully updated your password
• Your new account password is approved
• Your password has been successfully updated
• Your password has been updated

Message body: Varies

Attachment: (any of the following with EXE and other extensions)
• accepted-password
• account-password
• approved-password
• email-password
• new-password
• password
• updated-password

More information can be found as follows:

Recent new Mytob variants
http://secunia.com/virus_information/28516/mytob.pz/
http://secunia.com/virus_information/28515/mytob.pj/
http://www.sophos.com/virusinfo/analyses/w32mytobhj.html
http://www.viruslist.com/en/alert?alertid=184538968
http://www.viruslist.com/en/viruses/encyclopedia?virusid=118626

Kaspersky Weblog -- New Mytob becoming prevalent
http://www.viruslist.com/en/weblog?calendar=2006-04

Some new Mytob variants are showing up in the top 10
http://myavert.avertlabs.com/myavert/default.aspx
http://www.virustotal.com/en/indexf.html
http://www.fortinet.com/FortiGuardCenter/global_threat_stats.html

Published Apr 20 2006, 08:52 PM by hwaldron

Comments

No Comments

This Blog

Syndication
Copyright - www.myITforum.com, Inc. - 2007 All Rights reserved.
Powered by Community Server (Commercial Edition), by Telligent Systems