Two waves of spam were launched this week to send out new variants of the Bagle Trojan horse, antivirus company Sophos said.

All versions of the Bagle DI-U Trojan try to turn off antivirus and security software, and to block access to security Web sites, in an attempt to strip away a PC’s immune system, enabling hackers to gain access, Sophos said in a statement Tuesday.

There are strong similarities between the two waves of spammed messages bearing the Trojan, according to Sophos. In both, the subject line is blank, the body message text is “new price,” and the malicious file attached could be identified with names such as “09_price.zip,” “price_new.zip,” and “price2.zip.”

Bagle has spawned at least 70 variants since the virus emerged in January 2004. Some iterations have been more sophisticated than others, blending mass-mailing and Trojan horse techniques.

more from [url=http://news.com.com/Bagle+attack+comes+in+two+waves/2100-7349_3-5875863.html?tag=nefd.top]News dot com[/url]

---

Filed under: Security - @ September 23, 2005 12:56 am