New Virus Attack Technique Bypasses Filters

[DuVeL]

New Virus Attacks Via RAR Files

A new article at eWeek indicates that Virus writers are using .RAR files to bypass Filters and Anti-Virus systems to infect computers. Most anti-virus software cannot scan a .RAR file, and most firewalls do not block the extension yet". Anti-virus vendors have acknowledged the presence of viruses delivered as .rar files in the past few weeks and are scrambling to develop tools to identify and eradicate the malware.


Quote:
Virus writers have once again gotten the drop on anti-virus vendors and IT administrators with a new technique that's finding early and considerable success.
Late last month, administrators and service providers began seeing virus-infected messages with a new type of attachment hitting their mail servers: an .rar archive. .Rar files are similar to .zip files in that they are containers used to hold one or more compressed files. Administrators who have seen .rar-packed malware say that none of the messages have been stopped by their anti-virus defenses.

Many of the messages in .rar virus e-mail are slick invitations to view pornographic content, which is part of the reason for the viruses' success, experts say.  One recent .rar virus that appeared at the end of last week is disguised as a patch from Microsoft Corp.


WHOLE text here: LINK

[Anonymous]

The Golden Rule still applies:

If you don't know who it's from don't open it
If you do know who it's from be suspicious