Virus Alert Update, 11/15/99

 
Dec 13, 1999
We are currently watching the latest on the two most recent (and potentially dangerous) virus outbreaks. Let us all be aware!

Bursting Bubbleboy

The Seinfeld-esque virus known as BubbleBoy is raising alarms in many quarters. Its author originally sent the virus code directly to security experts, and until this week, no known copies existed "in the wild." Now, however, it is openly available on a Japanese Web site. It's probably only a matter of time before it is copied, customized and sent out into the world to do its evil work. And of course, the sense of one-upman-ship that seems innate in virus writers assures us of even "better" versions to come.

Bubbleboy is launched by simply previewing infected e-mail in Microsoft's Outlook e-mail program. No longer are you safe as long as you scan before actually opening your e-mail. Just previewing it is enough to launch it. The fact that the problem is essentially limited to Outlook users doesn't minimize the scope of the potential chaos, since Outlook is by far the most-used e-mail browser.

Although patches from Microsoft exist and every antivirus software program has downloads to minimize the risk, security experts doubt that will prevent the potential havoc. It is a simple fact that far too many people (including corporations) fail to keep up to date on the updates, and a dismayingly large number of people don't even HAVE antivirus software on their home computers.

This News Desk most soberly urges all its readers to seek out and install the Microsoft patch and the latest updates for your antivirus software (you DO have one, we assume!), setting it up to scan as the e-mail is received, long before you actually preview or open it.

A Wolf in Microsoft Clothing

Microsoft has posted a warning about a new hoax on its Year 2000 Portal Page. A phony e-mail has been circulating around the Internet with a Trojan horse attached. The return address appears to point to Microsoft's support staff, lending credibility to the message.

The email invites users to download an attached "Microsoft Year 2000 Counter." Unfortunately, the attachment also includes a Trojan horse that steals a person's password, login and username when downloaded. It also replaces the Wsock32.dll file on the user's local system, which is essential for Net connection, with a Trojan version which enables the system to secretly send fake messages.

Since the e-mail indicates that it was sent from "Support@microsoft.com," all too many people are willing to take the e-mail at face value and duly download the dastardly data snitch. However, there is a notice on Microsoft's Web site that reads: "There is a hoax email in circulation on the Internet concerning a fictitious Microsoft Year 2000 Counter. This mail uses the Support@microsoft.com as their FROM: alias. There is no such software from Microsoft and if you receive this mail you should NOT open it but delete it immediately."

The phony e-mail itself says:

"From: support@microsoft.com
Subject: Microsoft Announcement
Date: Tue, 14 Sep 1999 23:37:05 +0200
To All Microsoft Users,
We are excited to announce the Microsoft Year 2000 Counter.
Start the countdown NOW.
Let us all get in the 21 Century.
Let us lead the way to the future and we will get YOU there
FASTER and SAFER.
Thank you,
Microsoft Corporation"

The author(s) of this hoax remain unidentified to date, except for the country of origin, which has been traced to Bulgaria.


Privacy | FAQ | Site Map | About | Guidelines | Contact | Advertising | What is ColdFusion?
House of Fusion | ColdFusion Jobs | Blog of Fusion | AHP Hosting