Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search


Hostile Trojan Missiles Create Threat

Attention Information Technology editor - for immediate release

A news alert from Content Technologies’ Threat Lab

WELLINGTON, Dec 6: Classic anti-virus solutions are not effective against present and emerging script attacks, such as LOVEBUG and KAKworm, currently the most prevalent viruses in the world.

Trojans such as Qaz, which breached Microsoft’s network in the United States and was the fifth most prevalent virus in September 2000, are dangerous but of more concern is the rise in prominence over the last couple of months of Script-based hostile code.

In a recent survey by the International Computer Security Association (ICSA), 41 per cent of the respondents said LOVEBUG had inflicted a “disaster “ in their networks, shutting down servers and costing companies on average $NZ 285,000 based on lost productivity and related issues.

The Threat Lab team from Content Technologies, the leading developer of e-mail and Internet content security and policy management solutions, has analysed the shape of present and emerging script attacks.

“Our research shows that the continued effectiveness of classic signature-based scanning anti-virus techniques will be greatly challenged by recent developments, both in the availability of tools for the unskilled 'script-kiddies'; and in the use of encryption,” says Alyn Hockey, Director of Research for Content Technologies.

“A good way to illustrate this is the development of Godmessage.html. Having studied the progress of KAKworm and BubbleBoy, we envisage that if the development of GodMessage.html continues at its current pace, it will soon be able to replicate and morph in such away as to present the AV industry with some interesting challenges.”

Currently Godmessage can be compared to a directed missile, which can be used to target a victim by e-mail for some nefarious purpose. Traditional AV solutions are able after a time to develop a viral pattern to protect the user.

“However, if Godmessage takes on worm capability - which we expect it to do – these individual attacks will multiply into a missile attack of differing payloads,” Mr Hockey said.

“Classic signature-based scanning anti-virus solutions will not be able to cope with the variants and the speed with which they appear. Potentially this leaves thousands of organisations and end-users exposed.”.


If you would like to know more, Content Technologies’ Threat Lab team have developed the following news bulletins on script-based hostile code, including:

HTML Signature Attacks, including an overview of KAKworm

Trojan within Trojan Attacks, including an overview of GodMessage

Protection from Script Attacks, including a free script checking tool from Content Technologies

About Content Technologies’ ThreatLab:

The main activities of the Content Technologies’ Threat Lab are to monitor current and incipient security issues, investigate novel threats and develop proactive strategies and defence mechanisms.

This was demonstrated with ThreatLab’s approach to LOVEBUG and its variants. The team developed a generic solution, rather than building countless patterns to protect customers.

Content Technologies’ customers have been protected from the LOVEBUG and its variants since May 5 with a single generic fix - an intelligent keyword search profile that detects if an attachment contains suspicious VBScript commands. The suspect message can be quarantined or deleted at the gateway, depending on the organisation’s content security policy.

MIMEsweeper can even check the object regardless of how many file extensions it is buried under and irrespective of the message or filename.

To keep abreast of the latest threats and how to use MIMEsweeper to stop them, subscribe to the threat lab newsletter at


© Scoop Media

Business Headlines | Sci-Tech Headlines


Watch This Space: Mahia Rocket Lab Launch Site Officially Opened

Economic Development Minster Steven Joyce today opened New Zealand’s first orbital launch site, Rocket Lab Launch Complex 1, on the Mahia Peninsula on the North Island’s east coast. More>>


Marketing Rocks!
Ig Nobel Award Winners Assess The Personality Of Rocks

A Massey University marketing lecturer has received the 2016 Ig Nobel Prize for economics for a research project that asked university students to describe the “brand personalities” of three rocks. More>>


Nurofen Promotion: Reckitt Benckiser To Plead Guilty To Misleading Ads

Reckitt Benckiser (New Zealand) intends to plead guilty to charges of misleading consumers over the way it promoted a range of Nurofen products, the Commerce Commission says. More>>


Half A Billion Accounts, Including Xtra: Yahoo Confirms Huge Data Breach

The account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (the vast majority with bcrypt) and, in some cases, encrypted or unencrypted security questions and answers. More>>


Rural Branches: Westpac To Close 19 Branches, ANZ Looks At 7

Westpac confirms it will close nineteen branches across the country; ANZ closes its Ngaruawahia branch and is consulting on plans to close six more branches; The bank workers union says many of its members are nervous about their futures and asking ... More>>

Interest Rates: RBNZ's Wheeler Keeps OCR At 2%

Reserve Bank governor Graeme Wheeler kept the official cash rate at 2 percent and said more easing will be needed to get inflation back within the target band. More>>


Get More From Scoop

Search Scoop  
Powered by Vodafone
NZ independent news