MS08-067 worms squirming in the wild
![ryan-naraine.jpg](https://www.zdnet.com/a/img/resize/58705b1ab848cb0209d7d7d504dffaab176d93aa/2014/07/22/4b4e2273-1175-11e4-9732-00505685119a/ryan-naraine.jpg?auto=webp&fit=crop&frame=1&height=192&width=192)
![MS08-067 worms squirming in the wild](https://www.zdnet.com/a/img/2014/10/04/2c172cd6-4b64-11e4-b6a0-d4ae52e95e57/windowsbulletholes.jpg)
The worms, intercepted on Chinese-language versions of Windows, are being used to install a Trojan downloader, a denial-of-service bot and a rootkit to maintain stealthy presence on infected machines.
[ SEE: MS ships emergency patch for Windows worm hole ]
The in-the-wild attacks are using portions of the proof-of-concept code that's publicly available, according to a source tracking this new threat.
One of the two worms spotted is capable of conducting DDoS (distributed denial-of-service) attacks against several Chinese sites, including the two big search engines Google and Baidu. It also downloads the eMule peer-to-peer program and drops an erotic movie on the hijacked system.
Windows users that have applied the MS08-067 update are not vulnerable to these attacks. Patch now.