A wide spreading threat is currently infecting many consumers and business organisations.
The worm uses email for its initial propagation (an email which includes a link to a requested document that intrigues you to click further).
The email contains the following information:
This is The Document I told you about, you can find it Here. <link to .SCR file>
Please check it and reply as soon as possible.
Once inside a computer it can spread rapidly using shared drives and removal drives. It also attempts to spread via your own email by gathering email addresses from the compromised computer system.
Once the link is followed it proceeds to download the actual malicious threat W32.Imsolk.B@mm which infects the compromised machine.
Prevention is often better than the cure!
- Disable network sharing and/or disconnect infected computers from the local network and Internet.
- Block outbound traffic to the domains/ IP addresses contained in the social engineered email to prevent users connecting to distribution sites to download.
- Disable AutoPlay to prevent the automatic launching of executable files on network and removable drives and disconnect the drives when not in required.
Update Your Anti-Virus Software
You put a lot hope in your anti-virus software capturing this. Make sure it up-to-date.