Storm Worm

Not to be confused with W32/Storm.worm.
Examples of e-mails with "Storm Worm" in the attachment

The Storm Worm (dubbed so by the Finnish company F-Secure) is a phishing backdoor[1][2] Trojan horse that affects computers using Microsoft operating systems,[3][4][5] discovered on January 17, 2007.[3] The worm is also known as:

The Storm Worm began attacking thousands of (mostly private) computers in Europe and the United States on Friday, January 19, 2007, using an e-mail message with a subject line about a recent weather disaster, "230 dead as storm batters Europe".[6] During the weekend there were six subsequent waves of the attack.[7] As of January 22, 2007, the Storm Worm accounted for 8% of all malware infections globally.[8]

There is evidence, according to PCWorld, that the Storm Worm was of Russian origin, possibly traceable to the Russian Business Network.[9]

  1. ^ Шуб, Александр. "Штормовой червь" атакует Интернет (in Russian). Retrieved 2007-01-20.
  2. ^ Prince, Brian (January 26, 2007). "'Storm Worm' Continues to Spread Around Globe". FOXNews.com. Retrieved 2007-01-27.
  3. ^ a b c "F-Secure Trojan Information Pages: Small.DAM". Retrieved 2007-01-25.
  4. ^ According to Symantec, which detected it as Trojan.Packed.8. LiveUpdate definitions also identified it as Trojan.Peacomm
  5. ^ ""Storm worm" sloshes through the internet". 2007-01-19. Retrieved 2007-01-20.
  6. ^ "Storm chaos prompts virus surge". BBC News. 19 January 2007. Retrieved 2007-01-19.
  7. ^ Espiner, Tom (22 January 2007). "'Storm Worm' slithers on". ZDNet. Retrieved 2007-01-22.
  8. ^ Keizer, Gregg (January 22, 2007). "'Storm' Spam Surges, Infections Climb". InformationWeek. Retrieved 2007-01-22.
  9. ^ "The Internet's Public Enemy Number One". PCWorld. Archived from the original on 2009-03-16.