Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search

 

Destructive Christmas Day Virus/Worm Mutation

Symantec Warns Computer Users Of Destructive Christmas Day Virus/Worm Mutation

W32.Kriz Mutation Attempts to Wipe Out Computer Systems on Christmas Day

Symantec New Zealand has warned computer users and companies of the potential threat to data and systems posed by a mutation of the W32.Kriz virus. The hybrid virus renders infected systems inoperable on Christmas day by wiping out all hard drives and attempting to flash the BIOS (an essential set of computer instructions that is stored on a chip and provides communication between the operating system and the hardware). The W32.Kriz mutation combines the destructive payload of the W32.Kriz virus with the highly infectious W32.hllw.bymer.worm.

To combat the threat, Symantec is advising users of its Norton AntiVirus solution to download latest virus definitions via LiveUpdate of from www.symantec.com/avcenter/download.html and ensure the product’s Auto Protect feature is enabled. Symantec will have a tool available to detect and repair the mutation late Wednesday or early Thursday on its website.

Virus Specifics
W32.Kriz was first discovered over a year ago, but has not been widespread until recently. In a rare, but increasingly common occurrence, the virus has infected several common computer worms including Happy99.worm and W32.hllw.bymer.worm, allowing the two to propagate rapidly as one destructive unit. If no action is taken, the Symantec AntiVirus Research Center (SARC) expects to see high numbers of damage reports from all parts of the world on December 25. The payload is very similar to the CIH virus, which triggered on April 26, 2000 causing worldwide damage. The CIH virus was also circulating in the wild for more than a year before it caused major destruction.

“To be completely protected from the destructive W32.Kriz virus, users should download the latest virus definitions from the Symantec website and ensure the product’s Auto Protect feature is enabled,” says Richard Batchelar, Country Manager, Symantec New Zealand. “A tool to detect and repair the mutation will be available late Wednesday or early Thursday. SARC researchers will be working throughout the holiday season to analyse new viruses and to provide our customers with complete protection.”

W32.Kriz Virus Characteristics
 W32.Kriz is a Windows 9x/NT virus, which infects Portable Executable (PE) Windows files.
 The virus goes resident into memory, attempting to infect any files that are opened by the user or applications.
 Additionally, the virus modifies the KERNEL32.DLL file, a critical operating system file that enables the virus to spread throughout the system, and attempts to corrupt some PE files, requiring them to be replaced by known, clean backups or from the installation package.

Payload
On December 25th, the virus will attempt to flash the BIOS of the computer, preventing the computer from booting up properly and in most cases, requiring the user to replace the hardware. The virus will also begin overwriting files on all available drives including mapped network drives, floppy drives and RAM disks. The payload is very similar to W95.CIH virus.

Symantec AntiVirus Research Center
SARC is one of the industry’s largest dedicated team of virus experts. The center’s mission is to provide swift, global responses to computer virus threats, proactively research and develop technologies that eliminate such threats, and educate the public on safe computing practices. As new computer viruses appear, SARC develops identification and detection for these viruses, and provides either a repair or delete operation, thus keeping users protected against the latest virus threats. New Zealand customers are protected by SARC Australia.

About Symantec
Symantec, a world leader in Internet security technology, provides a broad range of content and network security solutions to individuals and enterprises. The company is a leading provider of virus protection, vulnerability assessment, intrusion prevention, Internet content and e-mail filtering, remote management technologies and security services to enterprises around the world. Symantec’s Norton brand of consumer security products leads the market in worldwide retail sales and industry awards. Headquartered in Cupertino, Calif., Symantec has worldwide operations in 36 countries including New Zealand. Symantec is represented in New Zealand by Auckland based distributors SealCorp and Tech Pacific.

For further press information please view http://www.symantec.com/region/au_nz/

© Scoop Media

 
 
 
Business Headlines | Sci-Tech Headlines

 

Up $1.20: $17.70 Minimum Wage Next Year

Coalition Government signals how it will move toward its goal of a $20 p/h minimum wage by 2021... “Today we are announcing that the minimum wage will increase to $17.70 an hour on 1 April 2019." More>>

ALSO:

Reserve Bank: Capital Proposals Are 'Radical', Says Fitch

International credit rating agency Fitch says the Reserve Bank's proposals for increased bank capital adequacy ratios are "radical" and "highly conservative relative to international peers", but the result will ultimately be "significantly stronger buffers" against financial system shocks. More>>

ALSO:

Regions And Skills: Work Visa Proposals 'Step In The Right Direction'

Immigration Minister Iain Lees-Galloway announced yesterday that the Government is consulting on proposed changes to employer-assisted temporary work visa settings to ensure that work visas issued reflect genuine regional skill shortages. More>>

ALSO:

Long Commutes: Hamilton To Auckland Passenger Rail Trial Gets Green Light

The NZ Transport Agency Board has approved a business case for the next steps in a start-up trial Hamilton to Auckland passenger rail service, Transport Minister Phil Twyford announced. More>>

ALSO:

Working Group Update: Mycoplasma Bovis Eradication Making Substantial Progress

International experts are impressed by New Zealand’s efforts to eradicate the cattle disease Mycoplasma bovis and are more confident the campaign is working... More>>

ALSO: