Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
Security /

Destructive Love Bug variant attacks

Users at 30 organizations were affected by the latest mutant, but they may have been able to stop it.

Today's breaking news
Send to a friendFeedback

Advertisement:

By Ashlee Vance
IDG News Service, 10/24/00

The "ILoveYou" virus has not disappeared. The troubling ways of the virus that hit computer networks about five months ago are still tormenting some users, who were hit by one of its more destructive variants on Friday.

Almost 50 variants to "ILoveYou" have turned up in recent months. The attention-grabbing subject line for the latest mutant, which reads, "US PRESIDENT AND FBI SECRETS" made it especially troublesome. Users at around 30 organizations reported being affected by the nasty program, which is named VBS/Loveletter.bj, according to officials at antivirus company McAfee.

Advertisement:

The virus is a reason for concern, but not panic, the officials say. The latest variant appears to have affected only users who did not keep their antivirus protection software up to date, according to officials at McAfee, a unit of Network Associates.

Vince Gullatto, senior director at McAfee's Avert Labs, says most of the variants that have appeared have stayed within a given company's networks. With the latest mutant, however, an unidentified media entity that had more communications with outside companies was affected, which lead to a wider distribution of the bug.

Like the original "ILoveYou," this variant spreads itself via Microsoft's Outlook software and can delete image files from a user's computer. Microsoft developed a patch for its Outlook software that helped companies fight off the variants of the virus, but some corporations simply failed to install the patch, leaving their systems vulnerable, Gullatto says.

Worldwide Problem?

McAfee and U.K. antivirus software vendor Sophos say they posted an alert to the variant on their Web sites. Users in the U.S. and in Europe have likely been affected, Gullatto says.

"We know of a large enterprise customer who has the original version, and they have this variant as well," he says. Gullatto adds that companies should update their antivirus .dat files more regularly in order to avoid future incidents. Companies often do not realize that an employee has disabled the antivirus software or fail to stay on top of available updates, he says.

"Some of the companies have not updated in the last year," Gullatto says. "We find time and time again that they believe they are protected."

He also adds that mobile workers tend to give companies the most grief in deflecting the painful viruses. Mobile users, in particular, do not update their antivirus protection software while on the road.

RELATED LINKS

Reaction: Here's what some Fusion users are saying about this article: What do you think? Add your comments to the thread

Apply for your free subscription to Network World. Click here. Or get Network World delivered in PDF each week.

Get Copyright Clearance
Request a reprint or permission to use this article.


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.