Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search


W32.Welchia.Worm - Lvl 4 - W32.Dumaru@mm - Lvl 3

Symantec Security Response - W32.Welchia.Worm - Level 4, W32.Dumaru@mm - Level 3
Symantec Security Response has upgraded the W32.Welchia.Worm to a Level 4 threat (high) - rating 1-5, 5 being the highest.

Symantec has upgraded this threat due to the nature of the worm and its effect particularly on corporate enterprise networks. The worm expoits two vulnerabilities, Microsoft DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026 using TCP port 135 and Miscrosoft WebDavvulnerability (described in Microsoft Security Bulletin MS03-007 using TCP port 80.

(The worm will attempt to download the DCOM RPC vulnerability patch from Microsoft's update site. If the update has been successful, the worm will reboot the computer so the update takes effect). Once a system is infected, the worm aggressively searches for other machines to infect. This results in an increase in traffic that impacts the network performance.

Symantec is receiving reports of severe disruptions on the internal networks of large enterprises caused by ICMP flooding related to propagation of W32.Welchia.worm. W32.Welchia.Worm has been propagating at a rapid pace in the wild, especially once inside corporate perimeters. In some cases enterprise users have been unable to access critical network resources.

Even though corporations had perimeter defences in place, in response to the W32.Blaster.Worm, internal infection is running high. Deployment of the security patch in large, geographically dispersed environments is exprected to take weeks to months. Both the W32.Blaster.worm and W32.Welchia.Worm are clear examples of why multiple levels of security needs to be deployed at various tiers of the network - including policy compliance for remote access users.

For more information on how the worm executes itself - please visit

Symantec has also discovered a new mass mailing worm - W32.Dumaru@mm that has been rated at a Level 3 (moderate). This worm drops an IRC Trojan onto the infected machine. The worm gathers e-mail addresses from certain file types and uses its own SMTP engine to e-mail itself. The e-mail will appear to have been sent from

Consumers and small businesses are encouraged to update their security patches, antivirus and firewall software, to ensure they are protected from W32.Blaster.Worm and W32.Welchia.Worm.


© Scoop Media

Business Headlines | Sci-Tech Headlines


Onetai Station: Overseas Investment Office Puts Ceol & Muir On Notice

The Overseas Investment Office (OIO) has issued a formal warning to Ceol & Muir and its owners, Argentinian brothers Rafael and Federico Grozovsky, for failing to provide complete and accurate information when they applied to buy Onetai Station in 2013. More>>


Tomorrow, The UN: Feds President Takes Reins At World Farming Body

Federated Farmers president Dr William Rolleston has been appointed acting president of the World Farmers’ Organisation (WFO) at a meeting in Geneva overnight. More>>


I Sing The Highway Electric: Charge Net NZ To Connect New Zealand

BMW is turning Middle Earth electric after today announcing a substantial contribution to the charging network Charge Net NZ. This landmark partnership will enable Kiwis to drive their electric vehicles (EVs) right across New Zealand through the installation of a fast charging highway stretching from Kaitaia to Invercargill. More>>


Watch This Space: Mahia Rocket Lab Launch Site Officially Opened

Economic Development Minster Steven Joyce today opened New Zealand’s first orbital launch site, Rocket Lab Launch Complex 1, on the Mahia Peninsula on the North Island’s east coast. More>>


Marketing Rocks!
Ig Nobel Award Winners Assess The Personality Of Rocks

A Massey University marketing lecturer has received the 2016 Ig Nobel Prize for economics for a research project that asked university students to describe the “brand personalities” of three rocks. More>>


Nurofen Promotion: Reckitt Benckiser To Plead Guilty To Misleading Ads

Reckitt Benckiser (New Zealand) intends to plead guilty to charges of misleading consumers over the way it promoted a range of Nurofen products, the Commerce Commission says. More>>


Get More From Scoop

Search Scoop  
Powered by Vodafone
NZ independent news