W32.Beagle.*

This virus will have an attached Zip file that is password-protected, and will have the password for the protected zip file in the body of the message. Do not attempt to open the attachment

Virus Name: WORM_BAGLE.G (and variants)
Message Subject Line: %random%
From: %random%
Message Body: %random%

URGENT ACTION IS REQUIRED:

IF YOU HAVE RECEIVED A SUSPECT MESSAGE:

1. Do not open the message and delete immediately.
2. Do not open any password-protected zip attachment with the password from the message body of the email.
3. If you have already received a message matching this description, even if it is from a trusted source, DELETE IMMEDIATELY and EMPTY THE TRASH! DO NOT OPEN THE MESSAGE OR THE ATTACHMENT.

IF YOU HAVE NOT RECEIVED A SUSPECT MESSAGE:
Be alert, it may be on the way.

The "From:" is spoofed to appear as though its coming from the one of the following addresses at the recipient's domain:

• management
• administration
• staff
• noreply
• support

and the attachment is supposedly password protected, and the "password" is a five-digit, random number contained in the body of the message.

• Symantec
• Network Associates
• Computer Associates
• Trend Micro

Previous TCS Virus Alerts:

• MyDoom
• BugBear-B Virus
• Virus Hoax - JDBGMGR.EXE
• "Critical" holes
• MyLife.b
• Dirty Trick
• Critical Patch Available for Microsoft Java Virtual Machine
• Microsoft Security Warnings and Patches
• IE Security Update
• Happy New Year Virus
• Universal Plug and Play
• WORM_GONE.A
• BadTrans.B
• Son of Nimda and Aliz
• Septer.Trojan
• Multiple Vulnerabilities
• Vote Virus
• Nimda
• Multiple Virus Reports SirCam and Code Red
• AOL Virus Hoax
• SULFNBK Hoax
• Homepage Virus
• NakedWife worm deletes Windows files
• Tennis Star - Anna virus alert
• Navidad
• Pikachu Virus
• Two Threats
• Net Zip Spy
• LIFE_STAGES.TXT
• New Love
• I Love You
• 911 Virus Report
• Denial of Service Attacks
• NewApt
• MiniZip