Since Tuesday, there have been reports about a new virus named W32.Sobig.F infecting computers all around the globe. It started with several e-mail server crashes and now there have been recordings of near 100 million virus e-mails received.
This virus lies within an infected attachment in e-mails, that are sent from a spoofed e-mail address. As of yet, it seems to be the most widespread worm ever.
As you might now, this is not the only reason why this virus quickly has become so feared. It seems that at the 22nd of August 7pm GMT (that’d be today, at the time of writing), it will force all its infected PC’s to upgrade itself.
The virus will as said connect through the Internet to one randomly chosen server out of 20, and through this download a program which it will immediately run. At the present time of writing, we do not know what this program will do.
Considering the actions done by the program by the W32.Sobig.E virus, we can expect nothing as harmless as for example the Blaster worm. The program apparently deleted the virus, and started to steal users’ passwords, as well as installing an e-mail proxy used for spam e-mails.
More information can be obtained at F-secure and F-prot.
