Glendale, California – (The Hosting News) – November 4, 2005 – Malware technology company, PandaLabs, is reporting that over thirty countries are now affected by the different
variants of the Mitglieder
Trojan. Four of the five variants (FK, FL, FM and FN) are
among the 6 threats most frequently detected by Panda Software’s online
antivirus solution, Panda ActiveScan.
PandaLabs has confirmed that the
Bagle.FN worm has teamed up with the Mitglieder.FK Trojan, which it sends from
the computers it infects in order to increase its rate of propagation.
This worm spreads by sending itself as a file attachment to the email
addresses it finds on the affected computer. Its main actions consist of
leaving the computer unprotected and trying to download a file that generates
emails to which it sends copies of Mitglieder.FK.
As new variants of Mitglieder have been released, their functions
are very similar: Trojans that install themselves on computers and, in the
case of the FK, FL and FN variants, try to download files from a remote
website, can open the door to other threats.
The main actions of the FM
variant are to disable the antivirus protection installed on the computer,
block access to web pages — mainly those belonging to IT security
companies — and prevent users from modifying the Registry, so that these
actions cannot be undone.
Luis Corrons, Director of PandaLabs explained the Mitglieder
Trojan threat, ”Without a doubt, the main trick of these variants is their extremely high rate of propagation, via both manual spamming and through the collaboration of the Bagle worms, which is not a new characteristic of this family. Among the companies hardest hit by these threats are those with email servers saturated with emails carrying these Trojans. For this reason, we recommend activating all types of filters to block this threat, especially in corporate environments.”
TruPrevent proactive detection technologies from Panda Software block these Trojans without the need for prior updates, so systems with these technologies installed have been protected from the moment that the malicious code appeared.
Find out more about protecting your IT infrastructure and the TruPrevent Technologies at: www.pandasoftware.com/truprevent.