With the fast-paced spread of the Swen worm and ongoing concerns that a second MSBlaster worm will soon strike, a variety of security experts and analysts made recommendations Friday on ways to detect and remove the first, and thwart the second. Swen: To defend against the Swen/Gibe worm, anti-virus firms such as Symantec and Network Associates recommend that users update their anti-virus definition files as soon as possible. All the virus vendors have accounted for Swen in their definitions, and have posted updates on their sites. Most anti-virus software will also detect an existing Swen infection, even if the software’s been installed after Swen has compromised the system. Removing the worm, however, is currently a laborious process that involves searching for instances of the worm’s files and editing the Windows Registry. An example of the instructions for such manual cleansing can be found on the Trend Micro Web site. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.