To print: Click here or Select File and then Print from your browser's menu

This story was printed from silicon.com, located at http://www.silicon.com/

Story URL: http://hardware.silicon.com/servers/0,39024647,10004160,00.htm

Virus watch: What can Fizzer teach us?
It may not have set the world alight but it should serve as a warning...

By Will Sturgeon

Published: Wednesday 14 May 2003

Companies are being urged to learn valuable lessons from the outbreak of the Fizzer worm which began spreading earlier this week.

While the worm is still appearing by the thousand in the wild, it hasn't exploded in the same way as viruses such as Melissa or the Love Bug. And while it is still bubbling under - with infections yesterday only down slightly on Monday - the mass mailer should, more importantly, serve as a warning to PC users and companies worldwide about the nature of future threats.

The fact Fizzer targeted KaZaA bears out the fears of the anti-virus community who have identified file-sharing services and instant messaging as two areas where viruses look set to boom as virus writers attempt to get back in touch with end users.

Speaking to silicon.com last month, Vincent Gullotto, vice president of Network Associates' anti-virus emergency response team, said: "Mass mailers aren't getting to the desktop any more via email, so virus writers are asking themselves, 'How do I get back to the desktop?'"

As such virus writers have identified these newer technologies as a way to gain direct access to users' desktops. Fizzer was just the latest proof of this growing trend.

Having spent many years and a great deal of cash protecting the perimeter and tightening security at the email gateway, companies must again ensure they are focussed on the actions of their staff - traditionally thought to be the one of the weakest links in the security chain.

Jack Clark, product manager at McAfee, said: "The message here to companies is 'don't lose focus on the desktop'.

"Over the past couple of years companies have done a great job at the perimeter and anti-virus firms have done a great job of protecting against viruses. A lot of people have email scanning at an ISP level and most people are now very wary of unsolicited attachments which arrive in an email. So virus writers are now having to look for any other infection mechanism which will be successful."

And as peer-to-peer services effectively take all the hassle out of infecting a user they are being targeted more and more often.

"Don't expect to ever see any viruses anymore which have just one infection vector," said Clark.

"Fizzer is indicative of a growing trend. KaZaA is proving very successful because people go there actually looking for these files. All the virus writer has to do is use a tempting file name, like Madonna's American Life, and as soon as the user downloads it and clicks on the file the virus is activated."

In terms of limiting the liability, Clark's advice to companies is simple. "KaZaA has no place in an office environment," he said.