Can anyone confirm this I got this from a security partner of ours.
The source code for the Sober.Z worm, which began infecting computers worldwide on Nov. 21, indicates that the author(s) are planning to launch another attack on Thursday, Jan. 5 and Friday 6, to coincide with the 87th anniversary of the founding of the Nazi Party. On these dates, PCs infected with Sober.Z will be instructed to connect to numerous servers to download malicious code that will likely send out German and English language email hate messages. Uknown Company (my edit)encourages network administrators to protect themselves by blocking domains believed to host the malicious code. These domains are:
Thank you I always forget about f secure and they did not post as musch info on symantecs site or I missed it some how.
a) Has the registrar been contacted about this, and
b) has anyone tried calling the US number listed in the WHOIS record?