dslreports logo
 story category
Another Sober Virus
It likes to come back from the dead
Computer security experts are warning users to be cautious of opening unsolicited e-mail attachments as a new Sober-I variant began appearing Friday. The virus places two small files into the memory of any machine that it infects, if either one of these files are manually deleted, its partner will resurrect the missing file. The virus also cleverly adds text to the messages it travels in that claims the e-mail has been scanned and found clean by anti-virus programs. Once a machine is infected the mass mailing virus searches a Windows machine for addresses and then uses its own built-in e-mail software to send itself to potential new victims.
view:
topics flat nest 

Neil6
Stop All The Downloadin
join:2003-08-20
New York, NY

Neil6

Member

this just in

quote:
Computer security experts are warning users to be cautious of opening e-mail attachments from unknown senders
Really? When did this happen?

Cho Baka
MVM
join:2000-11-23
there

1 edit

Cho Baka

MVM

Re: this just in

Funny that is, the article linked to warns of a slightly different concern, unsolicited attachments.
quote:
Computer security firms warned people to be suspicious of unsolicited e-mails bearing attachments.

Edit:

Fixed quickly!

Nerdtalker
Working Hard, Or Hardly Working?
MVM
join:2003-02-18
San Jose, CA

Nerdtalker

MVM

Re: this just in

said by Cho Baka:

Funny that is, the article linked to warns of a slightly different concern,

I find it interesting that this one has its own e-mail program, since it seems like most of them usually took advantage of Outlook.

This e-mail program add-on could also be used in the future for spamming purposes besides normal self-propagation.

jester121
Premium Member
join:2003-08-09
Lake Zurich, IL

jester121

Premium Member

Re: this just in

Not really -- most viruses will harvest addresses from Outlook /OE address books, but the "biggies" of the past few years have a built-in SMTP engine. Otherwise they'd be defeated by the anti-virus scanning offered by many ISPs. This is one thing that's lent more weight to the whole "blocking outbound port 25" debate that rages here once a month.

Neil6
Stop All The Downloadin
join:2003-08-20
New York, NY

Neil6 to Cho Baka

Member

to Cho Baka
I was being sarcastic, as it seems painfully obvious that you shouldn't open attachments from senders you dn't recognize. I didn't find a problem with the wording of the article.

Cho Baka
MVM
join:2000-11-23
there

Cho Baka

MVM

Re: this just in

I missed the sarcasm.

I thought you were highlighting the (corrected) difference in wording in the news story.

I think the unexpected part is very significant.
It is quite possible that an infected e-mail will arrive with a sender you know the name of.
IGGY9
No Guru Just Here To Help
Premium Member
join:2001-03-30
Chatham, IL

IGGY9 to Neil6

Premium Member

to Neil6
And the security forum thread on this got skipped over why?

Ivybridge_I7
Cyber-Crime Researcher OpSec
Premium Member
join:2004-06-09
Daytona Beach, FL

Ivybridge_I7

Premium Member

Not good news for anti-spammers

Maybe it's time that I finally retire and stop fighting spam. The risks are getting to great.


»www.antihotmail.com
Dslreports.com Profile: »profile.antihotmail.com
spammers_are_scumbags@antihotmail.com

johnwayne3
join:2001-03-09
Bountiful, UT

johnwayne3

Member

Re: Not good news for anti-spammers

Try bitdefender

Transmaster
Don't Blame Me I Voted For Bill and Opus
join:2001-06-20
Cheyenne, WY

1 recommendation

Transmaster

Member

Oh NO!

Do not open unknown attachment warning number 4,567,159,900,455 THIS YEAR!!!

Ericthorn
It only hurts when I laugh
Premium Member
join:2001-08-10
Paragould, AR

1 edit

Ericthorn

Premium Member

Re: Oh NO!

said by Transmaster:

Do not open unknown attachment warning number 4,567,159,900,455 THIS YEAR!!!
Tried to give you Thumbs Up on that, but my PC is acting weird tonight

How can the world not know this yet?

OMFG! I can get this Viagra sample for free if I just open this attachment!

Edit: Time to drop Avant Browser.. IE and Firefix work just fine.. Avant is needing some serious work. Thumbs UP!

LaZ3R
Premium Member
join:2003-01-17

LaZ3R

Premium Member

Cute Little Worm! :)

The worm in the picture looks so cute though... you can trust him...
VirtualLarry
Premium Member
join:2003-08-01

VirtualLarry

Premium Member

Re: Cute Little Worm! :)

said by LaZ3R:

The worm in the picture looks so cute though... you can trust him...
So why don't we have an e-mail virus named "Tequila" yet?

Vamp
5c077
Premium Member
join:2003-01-28
MD

Vamp

Premium Member

Sometimes I think...

Sometimes I think the only thing virus writers get a kick out of is seeing their virus in the news.. That and wasting internet bandwidth. I seriously don't even think they care much about messing peoples computer up anymore.

Mark1984
@rr.com

Mark1984

Anon

lolz morons

sry i just have to lmfao, because of all the people that open attachments with weird or stupid names, and generic messages. Sometimes its very funny because its the people should know better--- like at my university. a few weeks ago every1 on campus's email got mailed virus attachments from 3 of the less than 10 pple that can instantly mail every1 in the database >.> morons :P (of course i'm not by any means calling every1 who's mistakenly installed viruses a moron.. just the elect few with big paychecks that open very stupid looking messages with a very obvious virus attachment file and then send it to every1 on campus)
Mark1984

Mark1984

Anon

I wonder.....

how many people would open the attachments if a virus sent out the following email:

" Open the following attached file to install a fun virus:

lookAtMeImAVirusOpenMe.exe

sh0ck3r
@comcast.net

sh0ck3r

Anon

Re: I wonder.....

You really sure you want to know the answer to that?

Grimm43
You Never Hear The One That Kills You
Premium Member
join:2000-11-02
Largo, FL

Grimm43 to Mark1984

Premium Member

to Mark1984
You just brought a chilling visual to mind....because I figure 7 out of 10 would take the plunge...OMFG