This site uses cookies

Dawlish News

Microsoft offers MyDoom reward

56
1
Webmaster
Webmaster
30 Jan 2004 00:00

Microsoft Corp. has offered a $250,000 reward for the person responsible for the MyDoom worm, as the reported number of infected computers continues to rise rapidly.
The world's largest software maker said Thursday it would pay the money for information leading to the arrest and conviction of those responsible for unleashing a variant of the malicious software code, called MyDoom.b, which is designed to attack Microsoft's Web site in an apparent attempt to shut it down this weekend.
The Microsoft offer follows a similar $250,000 reward offered by SCO Group, the small software maker suing IBM over the use of code for the Linux operating system.
The first version of the worm was designed to attack the Web site of SCO, which has drawn the ire of Linux advocates.
MyDoom, also known as Novarg or Shimgapi, has infected computers around the globe by enticing users to open a file attachment that releases a program that potentially allows other attackers to gain unauthorized access.
Computer security experts got a little closer to finding the perpetrator, who apparently signed the worm with the name "Andy."
"There's no way to tell if that's the author's real name," said Craig Schmugar, a virus research manager at Network Associates Inc.'s McAfee anti-virus unit.
Schmugar said MyDoom also contained a message from the author, "I'm just doing my job, nothing personal, sorry."
Computers infected by the worm can be turned into launchpads for other attacks.
Security experts warned on Thursday the MyDoom virus would plague e-mail users for some time as it counts down to a mammoth digital attack next week on Microsoft and SCO.
For a fourth consecutive day, Internet service providers and corporations were bogged down by a crush of infected e-mails.
Security experts said as many as one in three e-mails in circulation was triggered by MyDoom.A, making it the fastest spreading Internet contagion ever.
"We are seeing companies struggling with this as they cannot clear the viruses quickly enough," said Graham Cluley, technology consultant for anti-virus and anti-spam firm Sophos Plc. "This one will be with us for a while."
Network Associates said the number of infected computers more than doubled to 400,000 or 500,000 as of Thursday, up from Wednesday's estimate of 100,000 to 200,000 machines.
Computer security vendor Symantec Corp. has detected thousands of attempts to contact infected computers, suggesting they could be used to spawn new attacks.
MyDoom, which is designed to entice the recipient of an e-mail to open an attachment with an .exe, .scr, .zip or .pif extension, are a form of spam, often with official-looking subject lines and addresses, leading many into believing they are from network administrators.
Once hit, the program scours the Web for more computers to infect. MyDoom.A is programmed to send spam e-mails to spread the infection further and marshal an army of infected machines to knock SCO's Web site offline on Sunday.
On Wednesday, a second variant dubbed MyDoom.B, appeared. It spread less quickly, but carried a program timed to unleash attacks on SCO and Microsoft. Also, it prevented access to anti-virus sites where patches for the bug are available.
Computers running any of the latest versions of Microsoft's Windows operating system e-mail program are at risk of being infected, although the worm does not exploit any flaws in Windows or software.
In November, Microsoft offered two $250,000 rewards for tips leading to the arrest of the Blaster and SoBig virus writers.

Comment Please sign in or sign up to post