Starting from Sunday evening (April 16), the authors of the infamous Bagle virus have begun distributing a new spam tool, originating from a server located in Slovakia, to thousands of compromised computers.
Mikko Hypponen, the Chief Research Officer at Finnish security firm F-Secure, stated that if a PC is infected with Bagle, hackers can download various other malicious software onto the machine. Subsequently, these programs will send spam to other systems without the user’s knowledge.
Once a computer is under control, cybercriminals can modify the software they have installed at any time. “The method of upgrading this attack tool is similar to how Microsoft updates Windows,” Hypponen remarked.
The link to download the new Bagle variant was previously hidden on a real estate website but was removed yesterday. However, just an hour later, this link was redirected to a French website hosted in the United States, and as of now, it is still active. F-Secure is currently in contact with the Internet service provider to block this connection.
