In this section

• Home
• Press office
• News archive
• Articles
• 2007
• 01

• Journalists' guide
• News archive

Talk to our experts

• Press contacts

Resources

• Sophos Podcasts
• Image gallery
• Customer case studies
• Free anti-virus
• White papers
• Awards and reviews
• Industry affiliations

Sophos blogs

• SophosLabs blog
• Graham Cluley's blog
• Paul Ducklin's blog
• Chet's blog

Info feeds

• Security news
• Company news
• More...

What are info feeds?

2 January 2007

Sophos users protected against Happy New Year malware Dref-V email worm spreads malicious greeting

Experts at SophosLabs™, Sophos's global network of virus, spyware and spam analysis centers, have reminded computer users of the threat posed by unsolicited email following a large scale worm outbreak over the new year holiday period.

The W32/Dref-V email worm, first seen on 30 December, hit email systems hard in the last two days of 2006 posing as an electronic greeting celebrating the new year.

With subject lines such as "Happy New Year!", "Fun Filled New Year!" and "Happy 2007!" the worm spread via email with a malicious executable attachment (called names such as postcard.exe and Greeting Card.exe).

A typical email sent by the Dref-V worm.

"The hackers responsible for this attack were clearly hoping that users would be too distracted by new year celebrations to remember computer security common sense," said Graham Cluley, senior technology consultant for Sophos. "Everyone should be suspicious of unsolicited email attachments, and ensure that their PC defenses - including their anti-virus protection - are in place and up-to-date."

Sophos Anti-Virus users have been protected against W32/Dref-V since 03:04:20 GMT on 30 December 2006.

Sophos experts note that this is not the first occasion on which hackers have exploited new year festivities to try and spread their malware. Two years ago another worm, Wumark-D, distributed itself in an unusual Happy New Year message in the form of a photograph of naked bodies.

Sophos recommends that all computer users should ensure that they are running an automatically updated anti-virus product, security patches and firewall software.

• Bookmark with del.icio.us
• Submit this story to digg
• Submit this story to slashdot

About Sophos

More than 100 million users in 150 countries rely on Sophos as the best protection against complex threats and data loss. Sophos is committed to providing security and data protection solutions that are simple to manage, deploy and use and that deliver the industry’s lowest total cost of ownership. Sophos offers award-winning encryption, endpoint security, web, email, and network access control solutions backed by SophosLabs—a global network of threat intelligence centers. With more than two decades of experience, Sophos is regarded as a leader in security and data protection by top analyst firms and has received many industry awards.

Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com.

See also:

• Computer worm spreads Happy Nude Year greeting
• Sign up now for free notification of new viruses found in the wild