SECUR> [NetGold] COMPUTER: VIRUS: ALERT: Worm Spreads Quickly by E-Mail

**************************************************************
Net Happenings - From Educational CyberPlayGround
**************************************************************
Date: Tue, 27 Jan 2004 05:56:22 -0500 (EST)
From: David P. Dillard <jwne@xxxxxxxxxx>
Reply-To: NetGold@xxxxxxxxxxxxxxx
To: NetGold <NetGold@xxxxxxxxxxxxxxx>
Subject: [NetGold] COMPUTER: VIRUS: ALERT: Worm Spreads Quickly by E-Mail

COMPUTER: VIRUS: ALERT: Worm Spreads Quickly by E-Mail

Posted on Tue, Jan. 27, 2004
Worm Spreads Quickly by E-Mail
SECURITY EXPERTS ASSESS `MYDOOM'
By Dan Lee
Mercury News
<http://www.mercurynews.com/mld/mercurynews/news/local/7805564.htm>

In what computer security experts are calling the biggest virus threat in
months, a new computer worm named ``Mydoom'' flooded e-mail systems Monday
and clogged computer networks around the world.

Just hours after discovering the worm Monday afternoon, anti-virus
software companies were reporting thousands of infections and were warning
that infestation from Mydoom could soon surpass that from the ``SoBig''
worm that plagued computer users in August.

The worm also left behind a backdoor, or Trojan, program that could be
used for hacking and reportedly targeted Web servers at the SCO Group, a
company that has sparked controversy in the technology world with its
legal claims over software used in the Linux operating system.

The worm, also known as ``Novarg'' and ``MiMail.r,'' was rated as a
``high-outbreak'' by security software maker Network Associates. The
designation was higher than the ``SoBig'' worm and the highest since the
``I love you'' virus in 2000.

<snip>

The attachment names also vary, having ``.exe,'' ``.pif,'' ``.cmd'' or
``.scr'' as extensions. They're often compressed as a Zip file.

<snip>

Mydoom can send out e-mails with spoofed addresses, grabbed from a
computer user's address book. Mydoom also is able to make up e-mail sender
addresses using valid Internet site names, Gullotto said.

-------------------------------------------------------

The full article may be read at the URL above.

Based on messages seen in my mail I was thinking of mentioning this
possibility of a new virus last night, but this article and other articles
in news publications provide an accurate statement of what is occuring
with this virus.  Be very careful about opening attachments, especially
those in messages that are not recognized as legitimate from a known
source.  I have noticed zip files as noted above and messages with Hi or
Hello as the subject line that seem to be examples of this virus. I have
also gotten messages from the virus using spoofed .org and .edu originator
email addresses.

xxxx@xxxxxxx                  (1763) hi
Jan 27 xxxx@xxxxxxxxxxx    [Subject line blank]

Be careful as to what you open!!!


Sincerely,
David Dillard
Temple University
(215) 204 - 4584
jwne@xxxxxxxxxxxxxxxx
<http://groups.yahoo.com/group/NetGold/>
<http://www.edu-cyberpg.com/ringleaders/davidd.html>
<http://www.kovacs.com/medref-l/medref-l.html>

<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>
EDUCATIONAL CYBERPLAYGROUND 
http://www.edu-cyberpg.com

VENDORS REACH THE EDUCATION MARKET
FREE EDUCATION VENDOR DIRECTORY LISTING
Find PREMIUM & FEATURED MERCHANT LISTING ALSO 
http://www.edu-cyberpg.com/Directory/default.asp

HOT LIST OF SCHOOLS ONLINE
http://www.edu-cyberpg.com/Schools/default.asp

SERVICES
http://www.edu-cyberpg.com/PS/Home_Products.html

Net Happenings,K12 Newsletters, Network Newsletters
http://www.edu-cyberpg.com/Community/index.html
<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>~~~~~<>

Other related posts: