A virus-like infection that was the subject of urgent U.S. government and industry warnings spread rapidly Monday across the Internet, causing computers to mysteriously restart and coordinating anelectronic attack against Microsoft Corp.
Security experts said the infection, which exploits an unusually dangerous flaw in Windows software, wasn’t yet seriously disrupting Internet traffic but posed that risk as it was expected to continue spreading quickly overnight.
Researchers discovered it about 3 p.m. EDT, and reported tens of thousands of infected computers inside universities, businesses and homes.
“It seems to be taking off fairly quickly,” said Johannes Ullrich of Boston, who runs the D-Shield network of computer monitors.
Infected computers were programmed to automatically launch an attack on a Web site operated by Microsoft on Saturday. The site, windowsupdate.com, is used to deliver repairing software patches to Microsoft customers to prevent against these types of infections.
Microsoft offers a free patch on the Web site to protect Windows users.
The infection was quickly dubbed “LovSan” because of a love note left behind on vulnerable computers: “I just want to say LOVE YOU SAN!” Researchers also discovered another message hidden inside the infection that appeared to taunt Microsoft Chairman Bill Gates: “billy gates why do you make this possible? Stop making money and fix your software!”
Source: Associated Press
- From pranks to nuclear sabotage, this is the history of malware
- AMD is working on fixes for the reported Ryzenfall, MasterKey vulnerabilities
- Cryptojacking turns your PC into a Bitcoin mine, but you won’t see a cent
- Is your browser mining bitcoin? ‘Malvertisements’ are hijacking Google Ads
- Cryptojacking is the new ransomware. Is that a good thing?