[RTTY] New Virus (Offtopic) ATTN K4GMH!
Doug Faunt N6TQS +1-510-655-8604
faunt@panix.com
Wed, 2 Oct 2002 22:52:34 -0400 (EDT)
From: "WA9ALS - John" <wa9als@starband.net>
Date: Wed, 2 Oct 2002 21:30:30 -0500
Some will appreciate this broadband off-topic and some won't. I'll take my
chances.
There are several new viruses going around big time today, some apparently
via ham reflectors. I got several -apparently- from well respected hams.
I'm sure the emails weren't really from these hams, but from the address
books of hams without adequate AV software and updates. I was sort of
surprised I didn't see anyone mention these today on these reflectors, so I
guess I'll be the sacrificial off topic lamb!
*** I wasn't going to say anything - Until I received the last 4 digits of
K4GMH's credit card!! One of the viruses apparently emails all or part of
some email on your system - In this case an order confirmation from
Microsoft for something Mike ordered!
Of course, the last 4 numbers don't hurt anyone much, but would you want
everything in your Inbox emailed to everyone in your address book? And so
on and so on.....?
More info at http://securityresponse.symantec.com/
73 - John (WA9ALS)
I just got one of these, too.
And another message I got that looked very reputable, but when I got a
404 from the URL included and queried the sender, I got the message
below back. These are seriously tricky.
73, doug
Date: Wed, 2 Oct 2002 21:42:16 -0500
From: k4ro.autoresponder@orionmicro.com
To: faunt@panix.com
Subject: k4ro
This is an autoresponder.
The Email address k4ro@orionmicro.com does not exist.
It is a fake Email address.
Messages sent with this Email address contain an attachment which
is in fact a VIRUS called WORM_BUGBEAR.A or W32.BUGBEAR
These messages seem to originate from an IP located in Cork, Ireland
(from Email headers in messages which bounced back).
DO NOT OPEN this attachment! For more info check:
http://www.cnet.com/software/0-7760531-8-20478035-1.html?tag=txt
Webmaster @ ORION Microsystems
mailto:webmaster@orionmicro.com