Recently in Virii Category
One of Apple's Mac OS X's best selling points was the lack of virii out there to attack it. But that's all in the process of changing. A very interesting vulnerability was recently discovered by Integro. Rather than write all about it, I'd like to direct you to this Q&A which is very detailed. I don't think I can explain it much better.
I've said for a long time that, no matter how good the anti-virus, anti-trojan, and anti-spyware on a computer is, it is up to the user to use these tools properly and have a good head on their shoulders if they want to avoid getting infected with something. This article compares technology to the users and says that the users need to be more aware of what they're doing and what's going on in order to avoid being infected.
Nobody is saying that you don't need these scanners when you're on the internet; nobody would dare assert that a human alone is perfect. But there are prevention methods. Sometimes you get infected before the scanner updates to see the virus you've caught. Sometimes the virus hardly counts as one to anyone outside a specific community. So here are some rules of thumb for those of you running Windows.
- Always run a modern anti-virus scanner, such as PC-Cillin, and keep it up to date daily. Scan regularly.
- Always run a modern anti-trojan scanner, such as The Cleaner, and keep it up to date daily. Scan regularly.
- Always run a modern anti-spyware scanner, such as Ad-Aware, and keep it up to date daily. Scan regularly.
- Run your Windows Updates every week and install everything critical or security related.
- Never open attachments you're not expecting; some virii come masquerading as attachments from your friends. Remember, your friends might get infected before you. Be prepared.
- Never run commands or follow instructions if you don't know exactly what they do. Some hoaxes will suggest that you delete windows critical files by saying they are virii, or ask you to type a command to give yourself some special power over your computer. These will really cause damage to your computer. Beware.
While these are good tips, they are far from all of them. You should make sure to educate yourself when online. Be as internet smart as you would be street smart.
So here's a fun one. The very software that's supposed to protect you from people sending unwanted packets to your machine is now the target. Meet the witty worm, so called because of the small message it sends when it broadcasts packets. This nasty little worm exploits problems with BlackIce and RealSecure products, so I'd suggest shutting them down until a fix is released for said products.
Beware! This worm is particularly nasty. We haven't seen one in a long time that had a goal that ended in damaging hard drives. On the up side, it should slow down propagation.
Now we need to discuss the definition of "destructive nature." Does a virus have a more destructive nature if it attacks hard-to-hurt servers belonging to large corporations, or if it destroys the hard drive of the machine it's infected while in the process of sending itself out? Which is more malicious -- the one that damages the infected party directly, or the one that damages a company while the infected person is safely unaware. Of course, Witty will inspire people to be more careful with updating their antivirus software. Well, hopefully it will. But the question remains: which is worse?
This is why we bug you, our loyal users, to update Windows regularly and frequently. This article talks about a new variation of the Bagle virus that uses a very old trick. Some time ago there was a Microsoft vulnerability that allowed people to embed code in the body of an e-mail message. This version of Bagle exploits that vulnerability. That means that if you've been good and kept up to date with your Windows updates, you're immune. If not, go run your updates. What are you still doing on my page? Go!