New computer virus warning (fwd)

Bruce Levak bruce at LEVAK.COM
Thu Mar 14 14:08:42 UTC 2002


According to Symantec it is -



Due to an increased rate of submissions Symantec Security Response has
upgraded the threat rating of W32.Gibe at mm from Category 2 to Category 3
as of March 11, 2002.

W32.Gibe at mm is a worm that uses Microsoft Outlook and its own SMTP
engine to spread. This worm arrives in an email message--which is
disguised as a Microsoft Internet Security Update--as the attachment
Q216309.exe. The worm also attempts to copy itself to all locally mapped
remote drives.

Also Known <http://securityresponse.symantec.com/avcenter/refa.html#aka>
As: W32/Gibe at mm, WORM_GIBE.A, W32/Gibe-A



Both Symantec
(http://securityresponse.symantec.com/avcenter/vinfodb.html/) and McAfee
http://www.mcafee.com/anti-virus/default.asp?) are good sites to use to
verify and treat viruses. Here is a site that deals with virtual
myths/urban legends and viruses/hoaxes http://www.vmyths.com/hoax.cfm.



/bruce





-----Original Message-----
From: Rudolph C Troike [mailto:rtroike at U.ARIZONA.EDU]
Sent: Wednesday, March 13, 2002 10:07 PM
Subject: New computer virus warning (fwd)



This looks legitimate. Best to be cautious.



        Rudy





---------- Forwarded message ----------



hello and good day!



...viruses and worms.  the best solutions: prevention and awareness.
NEVER

open attachments unless you are expecting them and NEVER open
attachments

that end with the .EXE extension.



-----Original Message-----

From: Writing Program Administration [mailto:WPA-L at asu.edu]On Behalf Of

Joe Williams

Sent: Thursday, March 07, 2002 9:47 AM

To: WPA-L at asu.edu

Subject: new virus



Just got this from our computing people.



Dear Humanities Faculty and Staff,



There is a new email virus, called W32/Gibe at MM, that Network Security is

beginning to get reports of that pretends to be a Microsoft Security

Bulletin.



It starts with this message:



Microsoft Customer,



         this is the latest version of security update, the

"2 Mar 2002 Cumulative Patch" update which eliminates all

known security vulnerabilities affecting Internet Explorer and

MS Outlook/Express as well as six new vulnerabilities, and is

discussed in Microsoft Security Bulletin MS02-005. Install now to

protect your computer from these vulnerabilities, the most serious of

which could allow an attacker to run code on your computer.



        It includes an attachment called q216309.exe.



DO NOT RUN THIS ATTACHMENT.



It will infect your machine with the virus and install a backdoor on
your

machine which will allow anyone over the network to take control of

your machine. As a general rule, Microsoft and other vendors do not
release

patches via email. It is always a good idea to download patches from
their

web site directly rather than trusting files sent or linked to via
email.



==============================================================



More information about the Ads-l mailing list