Tuesday, 15 July 2014

Fortinet Warns About a New Variant of NgrBot That Can Wipe Hard Drive

Protecting your computer and data at today’s time is getting difficult day by day. On each single day, thousands of new malware and virus variants are discovered to be active in the wild and affecting-stealing users’ data. The researchers at the leading data security company, Fortinet also recently discovered a new variant of NgrBot which has the ability to wipe the complete hard drive.

NgrBot is an IRC (Internet Relay Chat) worm and spreads through the chat messages, IRC channels, and social networking websites etc. According to Fortinet this new variant of NgrBot spreads through IRC channels and then performs various attacks that are IRC-based commands. Once the worm invades into the victim’s computer, it then simply wipes the victim’s hard drive by filling the hard disk sectors with zeros. Plus, the worm also downloads and hooks three APIs that prevents the victim from accessing the antivirus-related websites. It simply marks all the major antivirus vendors’ websites in its blacklist. If the hooked API finds any of the blacklisted website, it then blocks the access to that website. On top of all these, the worm also sends and receives IRC based commands from C&C server. These commands are used to download-install other malware.

“Currently, we are seeing the use of these commands in order to spread other bots, such as Andromeda, Neurevt, and Lethic,” writes He Xu, researcher at Fortinet. 

If your PC has been infected by the NgrBot then it is necessary that you remove it instantly because, you can lose the whole data that are stored in your hard drive. You can use the latest Fortinet antivirus to remove the worm. This is a reliable and effective antivirus software that can quickly detect the worm and then remove worms effectively. Additionally, if proactive protection is enabled, then it prevents the impending attacks from entering your PC. Meanwhile, issues may arise with the Fortinet antivirus that you are using. Simply availing the Fortinet technical support that you can find in companies like Techcillin and others is the easy and effective way to solve your Fortinet issues.

The good thing is many of the support companies provide support for multiple antivirus brands such as, Fortinet support, ESET support, McAfee support, AVG support etc. This makes the task of availing technical support easy for the customers. All that a user has to do is dial the respective support number and then avail the requisite support.

No comments:

Post a Comment