'Here You Have' Virus: You Don't Want It


McAfee Labs said it is investigating the new threat, which is commonly known as the "Here you have" virus because the emails carrying the work use "Here you have" in the subject line.

"It looks like multiple variants may be spreading and may take some time to work through them all to paint a clearer picture," McAfee Labs wrote in a security alert regarding the "Here you have" virus.

According to McAfee Labs, the subject line of the infected emails either say "Here you have" or "Just for you" and have a link embedded that looks like it opens to a PDF or a video. Instead, the URL points to an executable in disguise. When clicked, victims are prompted to download or execute the virus, which, when run, installs itself to a Windows directory and send the email message to the email address book of the victim.

Along with propagating further and generating spam, the "Here you have" virus also attempts to shut down and delete a host of different security services.

Sponsored post

IT departments across the country are warning about the "Here you have" virus, and emails featuring the links have already been spotted at several high-profile corporations, including ABC/Disney, Google, Coca Cola and NASA. Meanwhile, Comcast was forced to shut down its email servers entirely after being hit, MSNBC reported.

Security pros are warning against clicking suspicious links in emails and recommend updating virus definitions to protect from the "Here you have" worm.