Re: New virus that masguerades as a note from IT department.

Discussion in 'Computer Support' started by °Mike°, Aug 2, 2003.

  1. °Mike°

    °Mike° Guest

    More here:
    http://news.google.com/news?q=mimail virus


    On Sat, 02 Aug 2003 02:26:20 +0100, in
    <3f471302.30293604@localhost>
    °Mike° scrawled:

    >W32/Mimail Virus
    >http://www.cert.org/current/#mimail
    >
    >added August 1
    >
    >The CERT/CC has received reports of a virus known as 'W32/Mimail'.
    >The virus arrives in an email that claims to be from the 'admin'
    >user of your domain. The subject of the message is 'Your Account',
    >followed by a number of spaces and a string of 8 random characters.
    >The text portion of the message warns the user that their email
    >address is about to expire and to read the attached file for more
    >details.
    >
    >The message attachment is 'message.zip'. If opened, the virus exploits
    >a vulnerability in Microsoft Internet Explorer, which allows it to
    >modify the system registry and install a mass-mailer masquerading
    >as the process 'videodrv.exe'.
    >
    >At this time, it is unclear which specific vulnerability is being
    >exploited by this malicious code. The CERT/CC is currently investigating
    >this issue, and will update this page as more information becomes
    >available.
    >
    >The CERT/CC strongly encourages users to install anti-virus software,
    >and keep its virus signature files up-to-date.


    --
    Basic computer maintenance
    http://uk.geocities.com/personel44/maintenance.html
     
    °Mike°, Aug 2, 2003
    #1
    1. Advertising

  2. °Mike°

    Michael Guest

    In <news:3f481391.30435709@localhost>,
    °Mike° said:

    > More here:
    > http://news.google.com/news?q=mimail virus


    According to
    http://securityresponse.symantec.com/avcenter/venc/data/
    machines patched back in April with Cumulative patch 330994 won't be
    affected by this critter.

    ((U))
    M

    > On Sat, 02 Aug 2003 02:26:20 +0100, in
    > <3f471302.30293604@localhost>
    > °Mike° scrawled:
    >
    >> W32/Mimail Virus
    >> http://www.cert.org/current/#mimail
    >>
    >> added August 1
    >>
    >> The CERT/CC has received reports of a virus known as 'W32/Mimail'.
    >> The virus arrives in an email that claims to be from the 'admin'
    >> user of your domain. The subject of the message is 'Your Account',
    >> followed by a number of spaces and a string of 8 random characters.
    >> The text portion of the message warns the user that their email
    >> address is about to expire and to read the attached file for more
    >> details.
    >>
    >> The message attachment is 'message.zip'. If opened, the virus
    >> exploits a vulnerability in Microsoft Internet Explorer, which
    >> allows it to modify the system registry and install a mass-mailer
    >> masquerading
    >> as the process 'videodrv.exe'.
    >>
    >> At this time, it is unclear which specific vulnerability is being
    >> exploited by this malicious code. The CERT/CC is currently
    >> investigating this issue, and will update this page as more
    >> information becomes available.
    >>
    >> The CERT/CC strongly encourages users to install anti-virus software,
    >> and keep its virus signature files up-to-date.
     
    Michael, Aug 2, 2003
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. DC
    Replies:
    15
    Views:
    607
    @}-}-------Rosee
    Aug 2, 2003
  2. Thund3rstruck
    Replies:
    2
    Views:
    424
    °Mike°
    Aug 2, 2003
  3. TechNews

    Department of Defense Relies On Linux

    TechNews, May 27, 2004, in forum: Computer Support
    Replies:
    0
    Views:
    424
    TechNews
    May 27, 2004
  4. Imhotep

    State Department Developing Cyber Toolkit

    Imhotep, Nov 10, 2005, in forum: Computer Security
    Replies:
    19
    Views:
    836
    Moe Trin
    Nov 25, 2005
  5. Ned
    Replies:
    4
    Views:
    652
Loading...

Share This Page