[Spooks] Re: Wicked screensaver
Dave Halliday
[email protected]
Tue, 26 Aug 2003 23:27:29 -0700
I have been lurking but do computer security for a living so thought I
would chime in...
The key thing is to -->never<-->ever<-- open an attachment that you were
not -->specifically<-- expecting.
If you get an attachment from someone you know or have corresponded with
in the past, send them an e-mail before opening it. The best-case
scenario is that you have a nice chat and that they did send this to
you.
The worst-case scenario is that they opened some attachment themselves,
the virus processed their address book and started sending out copies of
itself to every one this person ever sent e-mail to. If they do not
remember sending this attachment to you, inform them that they probably
have a virus and need to visit any of the major anti-virus websites to
see about downloading a cure. Most places will provide free removal
tools for specific viruses but they will want you to purchase their
generic detection software.
If you do get the generic detection software, make a conscious point to
keep updating the definitions. The software works by looking at
incoming mail and comparing it against a list of known viruses. If your
definition file was last updated three months ago, you are wide open for
a host of new ones. Update it every few days if you deal with a lot of
e-mail attachments or download a lot of files or utilities. The updates
are generally free for at least one year.
As a general heads-up, another kind of problem is the False Authority
Syndrome hoax.
These are 'official sounding' e-mails that warn you that you may have a
file in your windows directory that comes from some virus and you need
to delete this file (sometimes it has a teddy-bear icon associated with
it - the file is usually named jdbgmgr.exe or sulfnbk.exe ). Do not do
this. Do not forward these e-mails. Check a good virus-hoax site first
before acting on the authority of someone else. The site I prefer for
this is VMyths.com: http://www.vmyths.com
Dave (Seattle, WA)
> -----Original Message-----
> From: [email protected]
> [mailto:[email protected]] On Behalf Of Cerianna
> Sent: Tuesday, August 26, 2003 10:20 PM
> To: [email protected]
> Subject: Re: [Spooks] Re: Wicked screensaver
>
>
> Visit http://mailman.qth.net/mailman/listinfo/spooks to
> unsubscribe from this list
>
> Yay! can yall spell V-I-R-U-S ?
> Oh, speaking of which, please yall, be wary of any "returned
> mail" type messages with an attachment. I've gotten like 5
> already, and they all contain the sobig.F virus..a really
> nasty bugger that spams everything in sight the second you
> open the attachment. Manon
>
> ----- Original Message -----
> From: <[email protected]>
> To: <[email protected]>
> Sent: Wednesday, August 27, 2003 12:05 AM
> Subject: [Spooks] Re: Wicked screensaver
>
>
> > Visit http://mailman.qth.net/mailman/listinfo/spooks to unsubscribe
> > from
> this list
> >
> > See the attached file for details
> >
> > --- StripMime Report -- processed MIME parts --- multipart/mixed
> > text/plain (text body -- kept)
> > The reason this message is shown is because the post was in HTML
> > or had an attachment. Attachments are not allowed. To learn how
> > to post in Plain-Text go to: http://www.expita.com/nomime.html ---
> > _______________________________________________
> > Spooks mailing list
> > [email protected]
> > http://mailman.qth.net/mailman/listinfo/spooks
> >
> > -
> > Visit http://www.spynumbers.com/ for complete information about Spy
> Numbers Stations
> >
>
>
> _______________________________________________
> Spooks mailing list
> [email protected] http://mailman.qth.net/mailman/listinfo/spooks
>
> -
> Visit http://www.spynumbers.com/ for complete information
> about Spy Numbers Stations
>