Nachi worm adds another string to its bow. A new variant of the Nachi worm is patching PCs that are vulnerable to MyDoom.A. Nachi B, also known as Welchi, copies itself onto systems using the same flaw as MyDoom.A, as a file named ‘Svchost.exe’. It then attempts to delete MyDoom and downloads patches to fix the security hole. Carole Theriault, security consultant at Sophos, said: “It’s an interesting case – some kind of Robin Hood virus. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.