June 2006
BitDefender Products Detect JS.Blackworm.A Yahoo Email Worm
Proof of Concept Worm Harmless Now but Shows Potential for Real Danger
BitDefender╝, an award-winning provider of antivirus software and data security solutions, today announced that its customers can detect the new JS.Blackworm.A worm that has been able to spread through an unpatched vulnerability in Yahoo Mail.
The worm is written in Javascript and spreads by exploiting a vulnerability in the Yahoo e-mail system, potentially targeting more than 100 million worldwide Yahoo users. Users of the new beta version of Yahoo Mail are not affected by this worm. Once infected email has been opened, the worm automatically executes and attempts to send itself to all @yahoo.com or @yahoogroups.com addresses in the affected account's contact list.
The worm was designed only as "proof of concept" malware and does not contain a damaging payload. BitDefender provided customers with the ability to detect the worm as soon as it was found in the wild.
⌠This is a very well written worm that although harmless right now, opens a Pandora▓s Box for potential future Yahoo Mail-focused malware. The designer obviously has a great deal of understanding of web programming and this particular vulnerability, and is another example of criminal malware organizations using better trained designers,■ said Bogdan Dumitru, BitDefender▓s CTO. ⌠Again, BitDefender has shown that we are smarter than even the most gifted virus writer and our customers were safe from this vulnerability within minutes of it hitting the wild.■
For more information about the JS.Blackworm.A worm, visit: http://www.bitdefender.com/VIRUS-246957-en--JS.Blackworm.A.html
About Bitdefender®
Bitdefender is the creator of one of the world's fastest and most effective lines of internationally certified internet security software. The company is an industry pioneer, introducing and developing award-winning protection since 2001. Today, Bitdefender technology secures the digital experience of around 400 million home and corporate users across the globe.
Recently, Bitdefender won a series of important awards and accolades in the global security industry, including "Product of the Year" by AV-Comparatives, "Best Repair 2012" by AV-Test, "Editor's Choice" and "The Best Antivirus for 2013" by PC Mag, that confirmed the antivirus software’s leadership status among security products.
More information about Bitdefender's products is available from the company's security press room. Additionally, Bitdefender publishes the HOTforSecurity blog, where readers can find stories from the underworld of internet fraud, scams, malicious software - and gossip.