Re: Fake Microsoft Update Email
From: Bill Sanderson (Bill_Sanderson_at_msn.com.plugh.org)
Date: 12/18/03
- Next message: Bill Sanderson: "Re: Turn off WindowsXP firewall?"
- Previous message: LAN: "mslaugh.exe , system ....."
- In reply to: Dave Dawson: "Fake Microsoft Update Email"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 17 Dec 2003 23:02:43 -0500
Just a point of reassurance:
The "they" in this case is purely an automated mechanism. The virus, on
infected machines, actively connects to NNTP servers and harvests posts for
email addresses in headers.
Only one human being--the Swen author--was necessary for what you are
seeing. 'Course, we could also blame the owners of the infected machines
for failing to provide antivirus protection, or patching their machines.
"Dave Dawson" <ddawson@satx.rr.com> wrote in message
news:01db01c3c508$38ce4bc0$a301280a@phx.gbl...
> Boy, talk about guts!
>
> After posting a question on the Newsgroup for PowerPoint
> on Monday and posting my email address to boot, I was
> bombarded with four Emails (and maybe even seven) that all
> had the "LOOK" of an official Microsoft Email / Website.
> They all told me that the attachment in the Email was the
> latest patch / update / fix to whatever (Outlook,
> Explorer, Windows, etc.).
>
> Fortunately, my ISP's virus software caught the
> W32.Swen.A@mm worm in each attachment sent, before my
> virus software even had a chance to get it.
>
> So, look out everyone - tis the season to wreak havoc
> among us all. And they are checking the newsgroup
> postings to find their victims.
>
> Dave D
>
- Next message: Bill Sanderson: "Re: Turn off WindowsXP firewall?"
- Previous message: LAN: "mslaugh.exe , system ....."
- In reply to: Dave Dawson: "Fake Microsoft Update Email"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
