Bagle.AZ 24 Hours Later

Community

Email Notifications

Write-Ups

Security Blogs

Miscellaneous Blogs

Security Sites

Security Manifest

Benjamin Johnstone-Anderson, Microsoft MVP - Windows Security

Waters Apparently Calming

Ever since MessageLabs stopped updating its statistics frequently, it has become harder to judge how fast mass-mailing email-borne viruses spread. However, I am happy to report that 24 hours after it first appeared, it seems that Bagle.AZ is not a significantly high-spreading Medium risk worm.

Although there is currently a consensus over the risk in the lower part of the Medium range, many vendors do not even consider this a Medium risk. The current reports are:

F-Secure: Medium
Network Associates: Medium
Panda Software: Medium
Sophos: Low-Medium
Symantec: Low-Medium
Trend Micro: Low

(Note that Panda uses a slightly different scale than other vendors listed here, so their site lists as “High” what is really “Medium.”)

Also, Symantec uses the name “Beagle“ instead of “Bagle.“

Despite the lower-than-initially-reported risk, it is important to remain vigilant for this version and subsequent variants. This shows that the Bagle family creator is still out there, still making new variants, and most notably still attempting to make those variants widespread.

Posted: Sep 29 2004, 08:05 PM by trafton | with 7 comment(s)

Filed under: VIRUSES, FOLLOW-UPS

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.

Recent Posts

Tags