xbiz world
xbiz premiere

Persistent Virus Bagle.AI Hits Internet

LOS ANGELES — The most recent variant of the Bagle virus appeared Monday via email, once again hitting unsuspecting PC users and communicating with its creators.

Bagle.AI arrives through inboxes with a subject line of “Re:” and a spoofed sending address. The body text and the name of the attachment is random.

The attachment has one of several file extensions, including .exe, .scr, .zip, .cpl and .com.

According to computer security firm McAfee Inc., the zip file is password-protected, in which case the body of the infected email includes a password, pass and key, all of which are random numbers.

The name of the attachment often contains the term MP3 in one form or another.

The Bagle.AI copies itself to the Windows System directory once it executes in a file named WinXP.exe and opens TCP port 1080 and UDP port 1040.

The worm uses these ports to communicate with its creator and report back each time it infects a new machine, Santa Clara, Calif.-based McAfee says.

It is the fourth variant of the family to be released since Thursday, when the Bagle.AF variant appeared on the Internet.

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

German Court: Regulator Can't Block Entire IG Accounts, Only Posts

A German court has ruled that while a regional media regulatory agency may block specific Instagram posts that include material deemed harmful to minors, it cannot ban an entire Instagram account due to such a post.

Brazil Lays Out Preliminary Guidelines for New AV Requirements

President Luiz Inácio Lula da Silva on Wednesday signed a decree establishing guidelines for new regulations requiring adult websites to age-verify users located in Brazil.

Senate Committee Debates Section 230 Reform

The U.S. Senate Committee on Commerce, Science, and Transportation held a hearing Wednesday on potential changes to Section 230 of the Communications Decency Act, which protects interactive computer services — including adult platforms — from liability for user-generated content.

Pearl Industry Network Offers Free Creator Memberships

Industry trade group Pearl Industry Network (PiN) has launched its free creator membership initiative.

Sam Bird Acquires Fanblast

Sam Bird, former co-director of global talent agency Surge, has acquired creator monetization tool Fanblast and named himself CEO.

'SheHerGirls' Launches Through Paysite.com

The braintrust behind PoleVixens has officially launched a new membership site, SheHerGirls, also through Paysite.com.

FTC Invites Public Comment on 'Click to Cancel' Rulemaking

The Federal Trade Commission (FTC) announced this week that it is seeking public comment on whether it should amend its Negative Option Rule to better address deceptive or unfair practices.

Aylo Rebuts Indiana AV Suit Claims Over VPN Access

Aylo this week asked a Marion Superior Court judge to dismiss Indiana’s lawsuit alleging that the company violated the state’s age verification law by failing to prevent access by users who employ VPNs and similar means to avoid geolocation.

'PSMTickling' Launches Through Paysite.com

PSMTickling.com has officially launched through Paysite.com.

JuicyAds Marks 20-Year Anniversary With Pop-Up Site

JuicyAds is celebrating its 20th anniversary.

Show More