getting emails w/viruses from users on this site

[David K]

Thank god i use yahoo for all my web based emails. Today alone, ive recieved 2 emails containing viruses. They were from users on HybridZ.

 

kc6wfs@ nitrophotos.com

and

petezcar@ aol.com

 

Dont know whats going on, check your email programs and do some virus scans.

[vashonz]

I heard about one on another board.

 

http://us.mcafee.com/virusInfo/default.asp?id=mydoom&cid=9543

That might be it.

[Dan Juday]

Yup, me too. Got one from Drax and another from Zparts.

[denny411]

I got a couple today as well. my ISP quarentined them so I`m not sure who they were from.

 

We had a rash of this a year or so ago.

[DavyZ]

I received returned mail from a user that my DavyZ@HybridZ email account had a virus--that is not possible! I have updated Norton, etc. It's coming from someone else

 

Davy

[Phyte]

I received returned mail from a user that my DavyZ@HybridZ email account had a virus--that is not possible! I have updated Norton' date=' etc. It's coming from someone else

 

Davy[/quote']

 

Your right it is coming from somewhere else. Its called spoofing. I've gotten atleast 5 today that said they came from me. Well considering every computer I have is a mac, and well.. there just aren't any virus's for OS X..

 

Phyte

[akeizm]

I'm not sure if its any1 one here but i'm getting some virus's that have a title and content of REDLINE or something like that.

[Guest Nic-Rebel450CA]

Just an FYI, when you receive an email with a virus, the person who it says it is from is almost guaranteed to NOT be who it was sent from. The email address that it says it is from is just an address that was in the address book of the person who is infected.

 

Everyone should try to do their part to prevent viruses. Regular system scans, use of web-based email services, and use of operating systems that are not vulnerable to viruses (such as Linux, and other unix-like systems). I am not certain if OSX is truly not vulnerable, as it's aim towards ease-of-use may release some securities that would prevent root-level access from scripts and programs.

[denny411]

I received three returned emails early this morning that were said to contain virus`s

[Z-Gad]

yup me too. Subject line was "Hi"

[Jeff]

I got three this morning two with the subject line "Test" and one with "Status"

[Sparky]

I got five last night spoofed from user on this site, 240.org, and zcar.com.

 

also several bounced messages coming back saying I was sending them.

 

 

Norton says everything is A-ok, but will run scan again tonight.

[Z-Dreamer]

I've got 9 or 10 the past two days!

 

The people who create these should be publicly hanged!

 

Mark

[Guest kc6wfs]

Hi all,

I have recieved MANY returned emails overnight.

 

Several were from my kc6wfs and nitrophotos.... account so they say.

 

I have Norton on all 4 of my computers, several of the emails are not even in my address book.

My computers are cleen.

 

I use Netscape for email.

The viruses use outlook or outlook express's address list.

 

Dave... kc6wfs@nitro_photos.com

[DavyZ]

Bastard viruses! Poor guys are emailing me asking what in the world I am sending them I tell them it is not me! Grrrr. I'm not happy about it...

 

Davy

[Phyte]

I am not certain if OSX is truly not vulnerable, as it's aim towards ease-of-use may release some securities that would prevent root-level access from scripts and programs.

 

Find me one

[Guest kc6wfs]

From FOXNEWS web site today. 1/27/04

 

SAN JOSE, Calif. — Network administrators were working to stop a fast-spreading e-mail worm that looks like a normal error message but actually contains a malicious program that spreads itself and installs a program that leaves an open door to infected computers.

 

 

The worm — called "Mydoom," "Novarg" or "WORM-MIMAIL.R" — was replicating itself so quickly that some corporate networks were clogged with infected traffic within hours of its appearance Monday. Its mail engine could send out 100 infected e-mail messages in 30 seconds, experts said.

 

It runs on computers running Microsoft Corp.'s Windows operating systems (search), though other computers were affected by slow network and a flood of bogus messages. About 3,800 infections were confirmed within 45 minutes of its initial discovery, according to the security firm Central Command (search).

 

"This has all the characteristics of being the next big one," said Steven Sundermeier, Central Command's vice president of products and services.

 

It appeared to first target large companies in the United States — and their computers' large address books — and quickly spread internationally, said David Perry, global director of education at the antivirus software firm Trend Micro (search).

 

"As far as I can tell right now, it's pretty much everywhere on the planet," said Vincent Gullotto, vice president of Network Associates' antivirus emergency response team.

 

Unlike other mass-mailing worms, Mydoom does not attempt to trick victims by promising nude pictures of celebrities or mimicking personal notes. Instead, one of its messages reads: "The message contains Unicode characters and has been sent as a binary attachment."

 

"Because that sounds like a technical thing, people may be more apt to think it's legitimate and click on it," said Steve Trilling, senior director of research at the computer security company Symantec.

 

Subject lines also vary but can include phrases like "Mail Delivery System" and "Mail Transaction Failed." The attachments have ".exe," ".scr," ".cmd" or ".pif" extensions, and may be compressed as a Zip file.

 

Besides sending out tainted e-mail, the program appears to open up a backdoor so that hackers can take over the computer later.

 

Symantec said the worm appeared to contain a program that logs keystrokes on infected machines. It could collect username and passwords of unsuspecting users and distribute them to strangers. Network Associates, however, did not find the keylogging program.

 

The worm also appears to deposit its payload into folders open to users of the Kazaa file-sharing network. Remote users who download those files and run them could be infected.

 

Symantec also found code that would flood The SCO Group Inc.'s Web site with requests in an attempt to crash its server, starting Feb. 1. SCO's site has been targeted in other recent attacks because of its threats to sue users of the Linux operating system in an intellectual property dispute. An SCO spokesman did not return a telephone call for comment Monday.

 

Microsoft offers a patch of its Outlook e-mail software to warn users before they open such attachments or prevent them from opening them altogether. Antivirus software also stops infection.

 

Christopher Budd, a security program manager with Microsoft, said the worm does not appear to take advantage of any Microsoft product vulnerability.

 

"This is entirely a case of what we would call social engineering — enticing users to take actions that are not in their best interest," he said.

 

Mydoom isn't the first mass-mailing virus of the year. Earlier this month, a worm called "Bagle" infected computers but seemed to die out quickly. So far, it's too early to say whether Mydoom will continue to be a problem or peter out, experts said.

 

"Over the next 24 to 48 hours, we'll have a much better sense," Trilling said. "Right now, the trend is only up."

 

 

Dave

[David K]

got 2 more this morning!

[Mike kZ]

I have also been getting these today!

[SBC_400]

today in my yahoo account I got 6 returned e-mails with attachment that I was scared to open and just deleted them all. they all said failure to deliver, but I never even sent anything to the addresses that it said it could not deliver to. I did not know any of the addresses, but they could have been from this board.