You are here

Home › Fortinet Protects Against W32/Bagle.CJ-mm

Fortinet Protects Against W32/Bagle.CJ-mm

Latest Trojan Unexpectedly Disables Firewall, Antivirus and Other Security Applications Upon Opening Email Attachments

SUNNYVALE, Calif., September 19, 2005 - Fortinet - the pioneer and market leader of Unified Threat Management and only provider of ASIC-accelerated, network-based multi-threat security systems for real-time network protection- today announced that its FortiGate™ integrated security appliances, FortiMail™ Secure Messaging Systems and FortiClient™ Host Security software protect against W32/Bagle.CJ-mm (also known as W32/Mitglieder.FE). A new Trojan, W32/Bagle.CJ-mm is received via an email with .exe or .zip file attachments that contain a malicious executable file, which injects itself into Windows Explorer processes and stays resident in memory upon execution.

As a Trojan, W32/Bagle.CJ-mm is spammed and does not spread by itself. Upon opening related attachments, the Trojan affects users by unexpectedly disabling firewall, antivirus and other security related applications, renaming files, deleting processes and generally lowering security settings. This latest Trojan is affecting users worldwide and Fortinet rates W32/Bagle.CJ-mm as a "Level Four" threat given that it is currently being spammed out in very large numbers.

To protect against W32/Bagle.CJ-mm, Fortinet advises against opening simplistic email messages with .exe or .zip attachments, as well as attachments within emails from unknown senders. For instance, Fortinet advises against opening the attachment within the following example email:

                  Subject: new price
                  Body: price
                  Attachment: price.zip

Automatic Updates: FortiGuard Distribution Network
All FortiGate systems in production worldwide are kept up to date automatically by Fortinet's FortiGuard Distribution Network, which provides continuous updates that ensure protection against the latest threats around the clock and around the world. To protect customers against W32/Bagle.CJ-mm, Fortinet published antivirus databases V6.066 for its thousands of FortiGate systems within two hours of receiving the first malicious sample. With this latest antivirus database update, Fortinet's FortiGate systems block the Trojan, and other types of threats, at the gateway before it enters customers' networks.

For further information on W32/Bagle.CJ-mm, please visit Fortinet's virus encyclopedia at:http://www.fortinet.com/VirusEncyclopedia/encysearch.jsp?fid=92895

For more information on Fortinet's FortiGuard Distribution Network please visit:http://www.fortinet.com/FortiGuardCenter/av.html"

About Fortinet (www.fortinet.com)

Fortinet is the confirmed leader of Unified Threat Management market. The company's award-winning FortiGate™ series of ASIC-accelerated multi-threat security systems, winner of the 2004 Security Product of the Year Award from Network Computing Magazine and the 2003 Networking Industry Awards Firewall Product of the Year, are the new generation of real-time network protection systems. They detect and eliminate the most damaging, content-based threats from e-mail and Web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real time - without degrading network performance. Fortinet's solutions are the only security products that are certified seven times over by the ICSA (firewall, antivirus, IPSec, SSL, IDS, client antivirus detection and cleaning), and deliver a full range of network-level and application-level services in integrated, easily managed platforms. Named a Light Reading Top 10 Private Company and #4 on Silicon Valley/San Jose Business Journal's "Fast 50" list, Fortinet is privately held and based in Sunnyvale, California.

 

How to Buy

Purchase Fortinet Products


As an incubator, we have a shared services environment but that doesn't mean that we want everything, such as intellectual property, between our customers shared. It was therefore critical that we have a solution to securely partition each customer's network but still allow for shared resources such as printers and Internet access. Fortinet's FortiGate systems enabled us to achieve this by virtualizing network security, which also helped free-up network bandwidth and increase our network performance.

Mike Dailey
Executive Director
Frederick Innovative Technology Center