CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
spacer spacer
image Sobig.F Virus Traced to Korea image
FBI
Sobig.F Virus Traced to Korea
FBI Requests Investigation of Computer Worm
By Soh Ji-young
Staff Reporter

The National Police Agency (NPA) yesterday said it is investigating an Internet Protocol (IP) address here that may have had a role in the spread of the Sobig.F virus, a computer worm that has clogged e-mail inboxes worldwide since last week.

The Cyber Terror Response Center within the NPA said it started the investigation at the request of the U.S. Department of Justice and the FBI on Saturday.

Of 20 IP addresses suspected of being behind the circulation of Sobig.F, one was provided by domestic Internet service firm KT, the FBI told the cyber terror squad.

A 36-year-old office worker in Suwon, Kyonggi Province was found to be the user of the IP address but police said it is unclear whether he was directly involved as he seems to have no particular computer skills.

``Right now, it seems the manĄŻs IP address has been used by hackers, but we have to complete our investigation to be sure,ĄŻĄŻ Yang Kum-won, superintendent at the center, said. ``It is hard to determine whether the hackers operated within Korea or from overseas.ĄŻĄŻ

The results of the investigation will come out in two or three days after police finish examining the manĄŻs computer to see how it was involved in the spread of the virus.

Sobig.F is the sixth version of a virus that first appeared in January. More than 100,000 computers worldwide are estimated to have been infected by the virus, which spreads when unsuspecting users open file attachments in e-mails that contain headings such as ``Thank You!,ĄŻĄŻ ``Re: Details,ĄŻĄŻ and ``Your application.ĄŻĄŻ

Yang said the best precaution against the virus is to avoid opening file attachments of suspicious e-mails. ``As most domestic IP addresses are not well protected, they can easily be misused by hackers,ĄŻĄŻ the superintendent said.

Computer users, especially those using Windows XP, NT and 2000, should update their security patches on a regular basis to prepare for computer worm attacks, he said.


KoreaTimes
Posted on Wednesday, 27 August 2003 @ 05:15:00 UTC by phoenix22 (968 reads)
[ Trackback ]		image

"Sobig.F Virus Traced to Korea" | Login/Create an Account | 0 comments
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register
 
Login
spacer
Nickname

Password

Security Code: Type Security Code: Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Related Links
spacer
· del.icio.us!
· digg it!
· reddit!
· TrackBack (0)
· Microsoft
· SuSE
· HotScripts
· W3 Consortium
· More about FBI
· News by phoenix22

Most read story about FBI:
Hacker goes undercover for the FBI
block bottom
Article Rating
spacer
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent
block bottom
Options
spacer

Printer Friendly Page  Printer Friendly Page
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
87ppm 0.127s (0.006s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer