While this malware has been called a worm or a Trojan, it is actually a bot that combines with other malicious software to take over individual computers and create a network of computers. These computers can then be used in a variety of devious plots.

Storm's creators have developed a complex, multi-pronged attack. Unlike most previous malware of this type, Storm uses a peer-to-peer network so the botnets communicate with each other rather than with a particular server. This creates a very flexible bot network that is difficult to trace. It provides an endless loop of computers and ensures that even if one machine is cleaned of the malware, the other zombie computers are still controllable. Storm has many other names. Symantec calls it Trojan.Peacomm and  states that: "Peacomm is a combination of an open source email worm, a file infecting virus, a polymorphic packer, a spam relay, a rootkit, and a botnet that operates over a peer-to-peer network. In the history of malicious code, we have never seen a malicious threat that contains a handful of these characteristics let alone all of them. Thus, the perfect storm."

The Storm is constantly changing. After the initial outbreak, it started sending out email that proposed to have an e-greeting card attached. Those sending the bogus cards seem to be long-lost family members, colleagues, schoolmates, and even unseen worshippers. The e-card messages look very real. They use the names of legitimate e-card sites, have information about viewing the card, and offer to send a message or card in reply. Recently Storm-infected email that offers a free game has started to appear. The goal is always to get the unsuspecting computer user to open the infected attachment.

It sounds like an evil storyline in a Batman movie, but the scenario that is playing out is no joke. No one knows the ultimate goals of Storm. Security experts say that over a million computers have been compromised and are now a part of the Storm network. The Storm creators are sending out millions of attack email each day.

The infected computers act together as a botnet network which will all perform in response to a single command from their creator.  In fact, the infected computers can be instructed to download new functionality at any time, so we can expect even more surprises from Storm. Previous botnets have been used to send out spam, to log keystrokes for gainong access to financial data, to steal identities, and to attack other computers and websites, overwhelming them by an immense amount of traffic. We already know that Storm's creators have been constantly adapting this malware to entice new victims and to stay one step ahead of the good guys.

What they have in mind for their computer botnet remains to be seen. You don't need a million or more computers just to send out spam. So we can almost certainly expect some additional evil scenario to play out.

Be sure to stay away from the Storm Worm by refusing to open email attachments unless you are expecting them. Don't fall for the e-card scam. Don't click to get a free game or a news story. As always, have a good anti-virus program installed on your computer and make sure that it is updated often.

If you have already clicked on such bogus email attachments, realize that your computer may be affected and scan it for viruses as soon as possible. Many anti-virus manufacturers have free tools for scanning your computer. Trend Micro has a free scanner called HouseCall. Panda Security will scan your computer with a free scanner called TruPrevent. Kaspersky Labs also has a free virus scanner. AVG offers several free tools including free anti-virus for home users  and a free rootkit detector.

Be careful out there!! It's getting hairier and scarier than ever.

For more detailed information on the Storm Worm, check ou the Information from Symantec or Read More from Trend Micro.