Skip to main content
CNN EditionTechnology
The Web    CNN.com     
Powered by
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
SERVICES
 
 
 
SEARCH
Web CNN.com
powered by Yahoo!

Race to stop SoBig virus next move


Story Tools

LONDON, England (CNN) -- Computer security experts have been trying to locate about 20 computers that could have been targeted by the SoBig.F virus to wreak further havoc.

As companies worldwide ramped up their protection systems Friday and home users downloaded anti-virus software, the hunt was on for a small number of infected machines that could have been chosen by the virus to bombard the Internet with more data.

The identities of the 20 are not known and it is not clear why they have been targeted.

more video VIDEO
You have worms: SoBig goes on the attack.
premium content
SoBig.F Alert

Be on the lookout for the following attachments:

application.pif
details.pif
document_9446.pif
document_all.pif
movie0045.pif
thank_you.pif
your_details.pif
your_document.pif
wicked_scr.scr

QUICKVOTE
Have you been hit by the SoBig worm?
Yes
No
VIEW RESULTS

SoBig.F -- the sixth strain of the same virus -- is the fastest spreading virus ever, hitting hundreds of thousands of computers. (Full story)

It arrives in e-mail attachments with subject headers, such as: Your details, Thank you!, Re: Thank you!, Re: Details, Re: Re: My details, Re: Approved, Re: Your application, Re: Wicked screensaver or Re: That movie.

The body of the message is short and usually contains either "See the attached file for details" or "Please see the attached file for details."

Once the attachment is opened, the virus creates a security hole in the computer, allowing someone else to use it to send on many more e-mails.

By Thursday, one in 17 e-mails contained SoBig.F worldwide. As systems have become clogged with data, corporate victims include Air Canada and defense giant Lockheed Martin.

On Friday, anti-virus experts were trying to predict its next move. Some feared it could unleash a mystery program across infected machines.

These computers would act as "master servers," receiving instructions from the author of the virus unless they were switched off.

"We don't know what that program is. It could mean a smiley faces dances across your screen or it could be something massive," Carole Theriault of Sophos Anti-Virus told Reuters.

But Paul Wood of Internet security company MessageLabs said the author of the virus might choose to hold off causing further damage, fearing that the massive spread of the virus increases the chance of being caught.

"On this occasion the writer of the virus has probably been too successful for his own good," Wood told CNN.

He added the culprit could be using the virus to spread spam -- mass marketing e-mail. (Full story)

Home computer users are advised to regularly scan their machines with anti-virus software.

If you have been infected, you may receive unfamiliar pop-up prompts or your machine might slow down. If in doubt, contact an anti-virus company or the Internet service provider.


Story Tools
Subscribe to Time for $1.99 cover
Top Stories
Burgers, lattes and CD burners
Top Stories
CNN/Money: Security alert issued for 40 million credit cards
 
 
 
 

International Edition
CNN TV CNN International Headline News Transcripts Advertise With Us About Us
SEARCH
   The Web    CNN.com     
Powered by
© 2005 Cable News Network LP, LLLP.
A Time Warner Company. All Rights Reserved.
Terms under which this service is provided to you.
Read our privacy guidelines. Contact us.
external link
All external sites will open in a new browser.
CNN.com does not endorse external sites.
 Premium content icon Denotes premium content.
Add RSS headlines.