NEWS A new Trojan is doing the rounds, using the promise of pornographic pictures in an attempt to take over a user's PC. Sysbug, which comes with the subject line of 'Re[2] Mary', pretends to be a personal email from a friend called James who has attached photographic evidence of a recent tryst.
Anyone foolish enough to open the attachment will not find what they are looking for, however, as it actually contains a malicious program that will allow their PC to be taken over.
Security firm Sophos said that a great many copies of the message have been circulating by email. So far, Sophos has received numerous reports of companies blocking the message at their email gateway, but little evidence so far of PCs being compromised.
"There's so much sordid stuff of this nature already on the internet that many users may actually think this is a piece of spam and just ignore it," explained Graham Cluley, senior technology consultant at Sophos.
Even though Sysbug is unlikely to become a major security threat, IT managers need to be alert as any one of their staff could make the mistake of opening the attachment.
Kevin Hogan from Symantec's Security Response team told silicon.com's sister site ZDNet UK that the Trojan is unlikely to spread much further because it does not self-replicate.
"I don't see it getting worse because it relies on manual spamming - unless they re-spam it," he said.
Cluley recommends that companies work on user awareness of these risks, and also implement a combined anti-spam and antivirus product at their gateway.
Sysbug comes just months after another virus that claimed to be compromising pictures of Hollywood star Julia Roberts. It is further evidence that the people behind them think they are onto a winner by offering email users a taste of a saucy image.
"Ever since the halcyon days of the Anna Kornikova worm, virus writers have realised that a good pair of legs can get you into anywhere," Cluley said.
Graeme Wearden writes for ZDNet UK
Comments
There are 3 comments. Join the discussion
1. anonymous
I think I may have picked up the 'James' virus via a friend of a relative. Anyone know of a 'fix'?
2. Norm Neil
Kill your computer...NOW!
3. anonymous
I feel sorry for anyone that lets loose any atatchment from unsecured sources(eg some unknown address). My rules are simple to not recive a virrus.
Do not open atatchments from anyone claming to be microsoft or any other OS vendor since they send links.
Do not open atachments from anyone unless you know they have sent it eg via MSN.
Re: is the lamest way to social enggener you.
Develop a AntiTrust atatude like your admin. Most Administratiors dont trust you why becase you are too trusting of the outside.
The internet IS A WAR ZONE Keep your head down or get hit.
If your computer acts how it shouldent tell admin