Symantec is warning of a new bit of malware that appears to be modifying corporate databases, particularly in the Middle East. Narilam, first discovered Nov. 15, follows a similar pattern of other worms by copying itself onto infected machines, adding registry keys and propogating through removable drives and network shares. The worm specifically targets databases with three distinct names: alim, maliran, and shahd. The malware also deletes tables with the following names: A_Sellers, person and Kalamast.
Source: https://threatpost.com/symantec-warns-new-malware-targeting-sql-databases-112312/77241/