SLK 350
Just a heads up...
Our network has been infected by W32.Changeup (lots and lots of new variants around), which managed to sneak past Symantec Endpoint Protection, according to Symantec they're patched it into yesterdays last definition, but, there's still a number of variants unpatched.
The damage factor is pretty low, but it's an annoying little fker. Basically, it infects the client machine by replacing shortcuts with mirrors. In doing so, changing the attributes of the existing folders to Hidden/System, and then creates a new share folder (which is linked back to an .exe).
Off of the back of that, the virus will then spread to any mapped drives/shares/removeable media, thus in a network environment your servers become infected, any served shares (file server...) then get raped in the same way, and new users clicking the shares become infected...
Very clever, simple little virus, and afaik it's still very much in the wild.
Hopefully they listen to my demands to disable autorun, stick superglue in every laptop USB, burn every USB pendrive and cut Symantec loose!
Our network has been infected by W32.Changeup (lots and lots of new variants around), which managed to sneak past Symantec Endpoint Protection, according to Symantec they're patched it into yesterdays last definition, but, there's still a number of variants unpatched.
The damage factor is pretty low, but it's an annoying little fker. Basically, it infects the client machine by replacing shortcuts with mirrors. In doing so, changing the attributes of the existing folders to Hidden/System, and then creates a new share folder (which is linked back to an .exe).
Off of the back of that, the virus will then spread to any mapped drives/shares/removeable media, thus in a network environment your servers become infected, any served shares (file server...) then get raped in the same way, and new users clicking the shares become infected...
Very clever, simple little virus, and afaik it's still very much in the wild.
Hopefully they listen to my demands to disable autorun, stick superglue in every laptop USB, burn every USB pendrive and cut Symantec loose!