Mimail variant targets surfers

Yet another variant of the malicious computer virus Mimail is on the loose and could be the first of many during 2004, security experts predict. Mimail.N arrives via email with the subject 'GREAT NEW YEAR OFFER FROM PAYPAL.COM!' and the attachment 'pp-app.zip'. Once you open the attachment, a pop-up box asks you to enter your email address, credit card number and personal identification number. If the computer is not connected to the internet, the worm changes the start page of Internet Explorer to a website featuring a satirical picture portraying George Bush and a monkey. The first appearance of Mimail was in August 2003 and many variants have spread ever since. The Mimail.C, Mimail.L and Mimail.M variants use the promise of pictures to target users and the Mimail.I, Mimail.J and Mimail.N variants attempt to trick surfers into giving out their credit card details. Carole Theriault, security consultant at anti-virus company Sophos, said "It's unlikely that all the Mimail variants have been written by the same person, because the social engineering tricks in each of these viruses are different. It could be that viruses writers find it easy to change a few elements in the code and send it out as a new infector." "Nothing so far can assure us that the spread of the Mimail variants will stop, we can expect some more during 2004," added Theriault. Get Web User magazine every fortnight - subscribe here now