Millions of computers worldwide have been infected this week by a fast-replicating virus called Bugbear and security experts warned on Friday that the threat was still accelerating.
Bugbear, known as a mass-mailing worm because it spreads itself through computer users’ e-mail programmes, was first identified by a security team in Sydney on Sunday, said Lindy Yarnold, a computer security expert with Symantec.
Since then it has spread worldwide, affecting millions of computers in Europe, the United States and Asia, she said.
”We have upgraded this threat from a category 3 to a category 4, our second highest threat level,” said Yarnold.
”At category 4, that would mean millions of users affected,” she said.
Yarnold said that by Thursday, Symantec was receiving more reports of computers infected by Bugbear than by another powerful virus, Klez, which has been plaguing computer users since February.
”The rate of increase in submissions (from affected users) is going up faster than usual,” she said, adding that Bugbear was likely to remain a threat for months.
Bugbear is what security experts call a ”blended threat”, carrying out multiple attacks once inside a computer.
It records users’ keystrokes to capture passwords or credit card numbers, attaches itself to e-mails and copies itself onto computers.
The virus is also capable of disabling anti-virus and firewall programmes designed to protect computers from attack and can install a ”trojan” that will allow hackers remote access to compromised machines, Yarnold said.
While it is difficult to know the exact number of computer users affected or the damage done by Bugbear, Yarnold said it was clearly one of the most virulent viruses yet.
While the first computer affected was reportedly in Malaysia, Yarnold said that does not mean the virus originated there, although it has had an above average impact in the Asia-Pacific region than earlier viruses.
Security experts warn that Bugbear arrives disguised as attachments to e-mails, possibly labelled with the names of friends or colleagues, and then exploits the user’s address book to replicate itself in new mails.
Bugbear is so active that some computer users have received e-mails from themselves containing the virus. Symantec said the virus infects only computers operating on the Microsoft Windows operating system and uses the Microsoft Outlook e-mail programme.
One sign of the virus is that the size of the attachment is always 50 688 bytes, Symantec said. – Sapa-AFP