Raleigh, NC (PressExposure) February 02, 2009 -- Internet security vendors were put on alert as news of a computer threat, dubbed âthe Obama wormâ, spread across the industry earlier this week.
The âObama wormâ was discovered on the network of a K-12 school and first reported by Walling Data, North Americaâs top distributor of AVG Internet Security Products. Only on Mondays a semi-transparent image of the Presidentâs face pops up in the bottom right hand corner of infected computers. The threat is more of nuisance than a serious threat but can completely destroy a machineâs ability to function.
Until Friday January 30th, no security vendors detected the worm.
âWe were able to confirm via internal testing and virustotal.com that the âObama Wormâ is now detected by AVG Internet Security products, as well as avast! Security products,â said Luke Walling, Founder and President of Walling Data. âAVG is identifying the threat as Generic_c.ADYY, avast! identifies it as Win32:Rootkit-gen.â
Walling Data revealed what it knows about the âObama wormâ so far and what has been submitted to all security vendors.
1. The threat appears to have been introduced to the schoolâs network via the use of a USB flash drive or possibly from e-mail. 2. The Obama worm replicates via USB storage devices and network shares. 3. The wormâs behavior indicates that it is more of a nuisance than a threat to sensitive data as there are changes to exe/bat/vbs shell extensions (i.e. breaking exe files) and it replicates to a large number of folders on the local computer. 4. On Mondays only, it will depict President Obamaâs face in the lower right corner.
The threat is unlikely to remain isolated, as it can be easily spread through the use of external devices, like USB flash drives. Schools and small businesses are especially susceptible because they often allow the use of such devices broadly.
For more information on Walling Data, visit http://www.wallingdata.com or call 866-833-5727.