Windows Korgo virus ‘aggressively stealing’ credit card numbers; Macintosh unaffected

“Windows users are being warned about a virus that is ‘aggressively stealing’ credit card numbers and passwords,” BBC News reports. “The Korgo virus debuted on 22 May and since then has been steadily racking up victims.”

“Although the virus is not widespread, security firms are issuing warnings because it is proving so effective at stealing confidential data,” BBC News reports. “Those infected by Korgo are being urged to change passwords and credit cards if they have been used online recently… the Korgo worm spreads around the net by itself… ‘This is quite an effective one,’ said Mikael Albrecht, product manager at F-Secure. ‘There’s a real danger that your online banking ID would get into the wrong hands,’ he said.”

Full article here.

MacDailyNews Take: Ahh, the joys of running a Windows PC. Is a Windows PC really less expensive than an Apple Macintosh? More info about smoothly adding a Mac to your computing arsenal here.

40 Comments

  1. every program installed on a mac, needs permission and a password, first! If in some service pack, windows tells you after something is installed = how much use is that? Active X controls dont work on a mac, and they can do hella damage to a pc, and so on and so on…

  2. I do have a serious question for any knowlegable Win users reading this thread.

    If you patched for Sasser are you safe from Korgo variants?

    -B

  3. Wouldn’t it be funny if someone wrote a Windows worm that placed a Mac order at the Apple Store on the credit card, and had them delivered to the owners address?

    How many would take the hint and keep it?

  4. Dave H wrote:

    “Wouldn’t it be funny if someone wrote a Windows worm that placed a Mac order at the Apple Store on the credit card, and had them delivered to the owners address?”

    I would hate to see you go to jail Dave for trying this but yes, it would be funny ” width=”19″ height=”19″ alt=”grin” style=”border:0;” />

    -B

  5. Jimbo: Not without upsetting Jay or Ron, the voices of tolerance and reason.

    Dave H: Wizard wheeze!

    Jimbo/1281: You’re both wrong – his head IS his ass.

  6. All this talk about “worms” and “Trojans” is making me horny. ” width=”19″ height=”19″ alt=”wink” style=”border:0;” />

  7. Sputnik: “This is not a virus, it is a program that users had installed”

    Can someone explain how comes Windows users who should be the leading experts on viruses, worms, trojans, etc. are the most clueless not being capable of telling orangel from apples?

    LOL Sputnik, I guess you proved Microsoft is kinda right when they say their major problem with security comes from their widely ignorant users base.
    I realize it is not MS PR, it is really Windows users are blockheads.

    “”W32.Korgo.C is a worm that propagates by exploiting the LSASS vulnerability on TCP port 445 (as described in Microsoft Security Bulletin MS04-011) and opens a backdoor on TCP ports 113 and 3067”

    Well, in a sense Sputnik is also right: viruses and worms are to Windows just like all other programs that users had installed on their PC: Gartner estimates an average of 29 of these *programs* installed on the average PC. No need to surf: self propagating, just like Korgo.

    BTW, Korgo exploits the same flaw as Sasser. Was not everybody told that the hole was filled? LIARS.

    Enjoy your vastly larger selection of *programs* installed on PCs.

  8. Beeblebrox, I can’t answer your question directly, but I did notice on Symantec’s site that Korgo only infects Windows 2000 and XP, which, as we all know, are the most secure versions of windows available. I actually only checked Korgo versions E through G, so I could be wrong about any/all of the A through D versions of Korgo. Isn’t it amazing that it takes so long for m$ to come out with a new version of windoze; it takes less than a day for someone to come out with a new version of windoze viruses!

  9. When this issue came up in our organization this morning (we have 3000 employees, half use Windows half use Macs), the security people were asked whether Windows users should stop using their credit cards on line. You might be interested in their responses:

    “If you are serious with your question, you should not limit the
    restriction to Windows. Keyloggers can be installed on any OS.”

    “First off, using a credit card online will have some level of risk. In fact, using a credit card at a physical location (i.e., not online) will also have a degree of risk (e.g., a gas station attendant who copies down credit card numbers).”

    “Do we only worry about systems that can have keyloggers installed via
    worms? Root compromises are a great delivery path for keyloggers.”

    Even though these three comments were from the security staff at our organization, it probably would not surprise you to know that all three are Windows users.

  10. Hey Sputnick, Just curious why you never defend yourself or provide back up information to refute the data others have refuted your comments with? No confidence or trust in your statements/opinions?

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.