Wordsmith.org: the magic of words

Wordsmith Talk

About Us | What's New | Search | Site Map | Contact Us  

Previous Thread
Next Thread
Print Thread
#103607 05/20/03 01:45 AM
Joined: Feb 2002
Posts: 833
M
old hand
OP Offline
old hand
M
Joined: Feb 2002
Posts: 833
A friend sent this to me - I instantly thought of all you folks here (especially WO'N! ). You may have heard of this one already....If not, pass it on....cheers, mg

I've checked this at the McAfee site and the virus/worm is listed there as a "medium threat." http://vil.mcafee.com/dispVirus.asp?virus_k=100307

virus alert
---------------------------
Microsoft Virus Alert
Quote of the Day
---------------------------
Monday, 19 May, 2003, 12:13 GMT 13:13 UK

Virus mimics Microsoft e-mail
People users are being warned about a new e-mail virus that disguises
itself as a message from Microsoft.

Anti-security firms have told people to be on the look out for the e-mail
worm which pretends to come from support@microsoft.com.

The message comes with a variety of subject lines but the attachment should
not be opened because it will infect users with a worm known as Palyh.

Palyh will then copy itself into to the Windows folder, and begins sending
itself to all e- mail addresses it finds on a computer.

Think before clicking

Virus writers are always on the lookout for ways to trip up unsuspecting
computer users and disguising a worm as a message from the world's best
known software firm is the latest in a line of cunning tricks.

" Microsoft technical support does not send out files in this way, and
users should think twice before they click "
Graham Cluley, Sophos

Palyh has been particularly clever because, unlike some of its
predecessors, it makes little effort to lure people into opening it.

"It doesn't follow the typical psychology and as it is fairly minimal users
could think it is not luring me, it must be ok," said Graham Cluley, Senior
Technology Consultant for Sophos.

For people inundated with e-mail, opening attachments can often be second
nature after a quick scan of the message raises no suspicions.

"Microsoft technical support does not send out files in this way, and users
should think twice before they click," added Mr Cluley.

Blocking at source?

The file comes with a .pif extension, a file name that may be less familiar
to users.

"Many users who are wary of .exe and .vbs files which arrive in their
e-mail my not realise that .pif files are equally capable of being
malicious," said Mr Cluley.

Sophos thinks there could be a good case for computer support departments
blocking all dangerous files types at the e-mail gateway, preventing users
from opening any executable code before it has been scanned by themselves.

The virus is "out there in big numbers" according to Sophos and struck at
around midnight, meaning Australia and New Zealand have seen the most cases
so far.

BBC News Online's own Technology inbox has received about a dozen of copies
of Palyh.

(Thanks to Mike Mills of News2Few < news2few@lks.net >)


Joined: Apr 2000
Posts: 3,065
B
Carpal Tunnel
Offline
Carpal Tunnel
B
Joined: Apr 2000
Posts: 3,065
Thanks for the warning, mg. Nice to know you're still with us.

Bingley


Bingley
Joined: Dec 2000
Posts: 13,803
Carpal Tunnel
Offline
Carpal Tunnel
Joined: Dec 2000
Posts: 13,803
I got an email, ostensibly from microsoft services (or something like that) yesterday, that had its virus stripped by our work spam filter.

This was probably it.


Joined: Mar 2001
Posts: 4,189
Carpal Tunnel
Offline
Carpal Tunnel
Joined: Mar 2001
Posts: 4,189
Thanks, mg..I'll keep an eye out for it.


Joined: Mar 2000
Posts: 6,511
Carpal Tunnel
Offline
Carpal Tunnel
Joined: Mar 2000
Posts: 6,511
" Microsoft technical support does not send out files in this way, and users should think twice before they click "
Graham Cluley, Sophos


"Microsoft technical support does not send out files in this way, and users should think twice before they click," added Mr Cluley.




Joined: Jan 2002
Posts: 1,526
veteran
Offline
veteran
Joined: Jan 2002
Posts: 1,526

I've gotten crap like this periodically over the last month or so - not to my work account (which filters a lot of crap), but to my hotmail account. I know better than to d/l anything I didn't specifically request.

It's a shame that people can't just be trusting and trustworthy. Utterly absurd that people injecting viruses into the collective think they're being clever or politically savvy or "making a point." (Oh, I really love that one.) "I can't get what I want, so I'll through a tantrum and piss in the public well."

As usual, a very strong advocate of the public ass-whooping,
k



Joined: Feb 2002
Posts: 833
M
old hand
OP Offline
old hand
M
Joined: Feb 2002
Posts: 833
I suspect that the first one was meant to be a header/pullout, and the second one was the quote being pulled....Mebbe I shoulda cleaned the whole thing up before I posted it, but!



Moderated by  Jackie 

Link Copied to Clipboard
Forum Statistics
Forums16
Topics13,912
Posts229,283
Members9,179
Most Online3,341
Dec 9th, 2011
Newest Members
TRIALNERRA, befuddledmind, KILL_YOUR_SUV, Heather_Turey, Standy
9,179 Registered Users
Who's Online Now
0 members (), 302 guests, and 2 robots.
Key: Admin, Global Mod, Mod
Top Posters(30 Days)
Top Posters
wwh 13,858
Faldage 13,803
Jackie 11,613
tsuwm 10,542
wofahulicodoc 10,510
LukeJavan8 9,916
AnnaStrophic 6,511
Wordwind 6,296
of troy 5,400
Disclaimer: Wordsmith.org is not responsible for views expressed on this site. Use of this forum is at your own risk and liability - you agree to hold Wordsmith.org and its associates harmless as a condition of using it.

Home | Today's Word | Yesterday's Word | Subscribe | FAQ | Archives | Search | Feedback
Wordsmith Talk | Wordsmith Chat

© 1994-2024 Wordsmith

Powered by UBB.threads™ PHP Forum Software 7.7.5