New virus threat
Swann, Benjamin R. (BSWANN)
BSWANN at arinc.com
Wed Sep 19 09:52:21 EDT 2001
I didn't recall if this was posted, so just to make everyone aware..
A new virus discovered yesterday is currently spreading across the internet
and now has a "High Threat", High Distribution" assessment. It's name is:
W32.Nimda.A at mm
This virus has multiple modes of transmission.
Earlier reports indicated that a user visiting an infected web site would be
prompted for a file download before getting infected. This is not the case.
It now appears that just viewing an infected web site can infect your PC
with no additional action required by you.
This virus has multiple modes of transmission.
The new twist with this virus is that in addition to arriving as an
attachment in email, it also resides on infected web sites. If you visit an
infected site, your PC can automatically download a .eml file, (Outlook
Express) which contains the virus. With this method of infection, the
Readme.exe or Readme.eml file containing the virus will NOT be visible as an
attachment in the email received.
IF PROMPTED TO DOWNLOAD A FILE FROM A WEB SITE THAT YOU DID NOT REQUEST -
JUST SAY NO!
Details on the virus are still a bit sketchy, more information here.
http://www.symantec.com/avcenter/venc/data/w32.nimda.a@mm.html
http://vil.nai.com/vil/virusSummary.asp?virus_k=99209
More information about the quattro
mailing list