Yet another NetSky virus arrived on the scene today. NetSky-V spreads using a well known Internet Explorer vulnerability, connected with the handling of XML pages. Instead of depending on users double clicking on infectious email attachments, the worm can spread automatically across vulnerable Windows boxes. Users can be infected by NetSky-V simply by reading an infected email. Just as well then that NetSky-V, although it has been observed in the wild, is far less common than previous versions. Most anti-virus firms rate NetSky-V as low-to-medium risk. A previous variant, NetSky-Q ,was also capable of auto-execution but it used a different exploit mechanism (an IE iFrame vulnerability, dating back three years) to the vulnerability exploited by Netsky-V. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.