Incidents

New PnP worm spreading

We’ve received numerous reports on a new worm spreading via the PnP vulnerability.
We detect it as Net-Worm.Win32.Small.d.

Normally the worm’s filename is wintbp.exe, it contains a basic IRCBot with Trojan-Downloader functionality. MD5: 7a67f7a8c844820c1bae3ebf720c1cd9

An urgent update has been released.

New PnP worm spreading

Your email address will not be published. Required fields are marked *

 

Reports

How to catch a wild triangle

How Kaspersky researchers obtained all stages of the Operation Triangulation campaign targeting iPhones and iPads, including zero-day exploits, validators, TriangleDB implant and additional modules.

Subscribe to our weekly e-mails

The hottest research right in your inbox