May

23

by Kaj Kandler

It was bound to happen sooner or later, OpenOffice.org caught it’s first worm. Sophos reports the first sightings of an OOo scripting worm in the wild. It uses an OOo document to carry itself. Remarkably, the worm is cross platform and uses perl on Linux, ruby on Mac OS X and JavaScript on Windows to infect other files and distribute itself through instant messaging.

The damage? It looks like the worm does download and display a porn image.

To the delight of Sophos, the presumable author did send the file directly to Sophos address.

One Response to “OpenOffice.org Worm in the Wild”

  1. Kaj Kandler Says:

    Some think this is a publicity stunt for the Anti Spam company. May be they are right. Receiving the worm free house is suspicious.

Leave a Reply

You must be logged in to post a comment.