Norman Data Defense Systems, a specialist in the field of data security, today issued an alert against the new worm W32/ Bagle.B. This worm is now spreading very fast in several countries around the world. It arrives at the email clients as "randomly generated string of characters and then" ....thanks.

Norman’s current risk evaluation of the new threat is High risk.

Norman SandBox v2 detects this worm as "W32/MALWARE" and quarantines it. For more information please look in Norman Data Defense Systems virus warning list on http://www.norman.com.

Characteristics of the new malicious program

Email subject: "ID + "randomly generated characters" and then" ...thanks
Email body start with: Yours..."and then random characters"
Email attachment: "Randomly generated file name".exe

More information about this worm is available from Norman Data Defense System’s web site: http://www.norman.com.

Recommendations

Norman Data Defense Systems definitions files from Tuesday, 17 February 2004 have support for the worm.

Norman Data Defense Systems recommends corporate and home users to immediately update installed antivirus products with new definitions files that detect this threat.

We recommend users without protection to download and install an antivirus program immediately.

Contact information

Steinar Wigtil, Director of R&D, Norman Data Defense Systems ASA,
Telephone +47 67 10 97 00, mobile phone +47 41 53 97 29

Audun Lødmel, Marketing, Norman Data Defense Systems ASA,
Telephone +47 67 10 97 79, mobile phone +47 93 44 65 31