Windows Korgo virus ‘aggressively stealing’ credit card numbers; Macintosh unaffected

“Windows users are being warned about a virus that is ‘aggressively stealing’ credit card numbers and passwords,” BBC News reports. “The Korgo virus debuted on 22 May and since then has been steadily racking up victims.”

“Although the virus is not widespread, security firms are issuing warnings because it is proving so effective at stealing confidential data,” BBC News reports. “Those infected by Korgo are being urged to change passwords and credit cards if they have been used online recently… the Korgo worm spreads around the net by itself… ‘This is quite an effective one,’ said Mikael Albrecht, product manager at F-Secure. ‘There’s a real danger that your online banking ID would get into the wrong hands,’ he said.”

Full article here.

MacDailyNews Take: Ahh, the joys of running a Windows PC. Is a Windows PC really less expensive than an Apple Macintosh? More info about smoothly adding a Mac to your computing arsenal here.


  1. Let’s review the steps…

    Step 1. Buy cheap PC at Walmart for $495

    Step 2. Spend 10 hours getting the thing to work so you can buy stuff online. (if your time is worth something the setup costs you $59 in labor – Walmart PC buyers make at least minimum wage ” width=”19″ height=”19″ alt=”wink” style=”border:0;” />

    Step 3. Get infected by Korgo

    Step 4. A hacker steals your credit card number.

    Step 5. Notice a month later (when your credit card statement arrives) that a 42″ Plasma Screen was purchased with your card: $6000.

    Step 6. You look in your living room and verify that you still have your 26″ Samsung TV and not a new 42″ Plasma HDTV.

    Step 7. You realize that your new Walmart PC actually cost you $6554.

  2. FUD from MDN…

    This is not a virus this is a program that users had installed on their machine…

    Just like the current state of OS 10.x.x just visit a site and a program is installed on your HD with out your permission…

    Whats the big deal this is life on the internet in the year 2004. All users should think about creating a separate user for surfing. And remember that every little shareware app could be a wolf in sheep’s clothing.

    SP2 for XP is going to alert a user when a application is installed with out the users permission. At least MS cares about providing solutions to problems. And the soon to be released Longhorn will create a ultra-safe modern computer environment.

  3. Notice how the BBC have started saying “Windows users are being warned…”

    I wrote an email complaining that they never specified which machines were vulnerable. They must have listened to me. At least I hope they did.

  4. Sputnick,

    It’s always “when” with you. Try talking about “now” and get your head out of the clouds.

    I can’t wait to see what M$ have to say about this. Maybe they’ll introduce a new category of update – “Extremely Absoulutely Critical Update”

  5. Last month Windows got 1000 new virus.
    That is about 31 every day!
    31! Every single day that makes over 11 000 viruses every year.
    Now there is more than 90 000 windows virus going around.

  6. Sputnick,

    “FUD from MDN…”

    MDN are quoting the BBC, the largest news organisation in the world (quite possibly). I don’t think it’s FUD when it comes from them.

  7. Windoze Users: If you’re not sure if you’ve been infected, according to F-Secure, you should — “Change your passwords and cancel your credit cards. Especially the ones you’ve used during last week.”

    [Then get out of Windows and go buy a Mac while you can. If you’ve been infected and find yourself somewhat poorer, you may never have that option again.]

    “This is not a joke.” [Then why am I (cough) laughing?]

    All kidding aside, this is getting scary.

  8. Jimbo von Winskinheimer,

    Sorry, I stand corrected ” width=”19″ height=”19″ alt=”wink” style=”border:0;” />

    His head IS up his ass!

  9. Sputnik,

    I’m not sure what makes you think this is a Trojan. The advisory clearly states:

    “W32.Korgo.C is a worm that propagates by exploiting the LSASS vulnerability on TCP port 445 (as described in Microsoft Security Bulletin MS04-011) and opens a backdoor on TCP ports 113 and 3067.

    This worm is a backdoor threat. A Trojan, by definition, comes in through the FRONT door.

    Feel free to diminish the danger of this kind of worm. The more Windows users who get compromised, the more switchers to Macintosh there will be.

    Already, on our university campus, we are warning all of our purchasing card Windows users who have recently used their university purchasing card, to cancel them. We are even considering whether Windows users should use such cards online in the future. It would not surprise me if the campus limits online credit card purchasing to Mac users only.


  10. Actually this is much more of a problem for the credit card companies than for the end users. You don’t have to pay for purchases you don’t make. I know because somebody hacked a DB and got my credit card number and used it but I didn’t have to pay for any of it.

    Unfortunately the credit card companies DO have to pay I believe; so the end users get it in the end anyway by having the costs passed down. When are people going to wake up? Swiss Cheese windows costs everybody money. Even us Mac Users indirectly. 🙁 I think M$ should have to give some of their cash hoard back.

  11. “Actually this is much more of a problem for the credit card companies…”

    Well, here’s the thing with corporate purchasing cards. While one can still contest a fraudulent charge, there is a LOT more paperwork to deal with doing so. Large institutions like universities have very specific protocols for dealing with incorrect or fraudulent charges and many hoops have to be jumped through (including contacting the vendor first), before the bank is involved.

    In short, it’s a bookkeeping nightmare.


Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.