Sober worm causes headaches
Posted by Daniel Fleshbourne on 27 October 2003 - 18:46 · 17 comments & 1182 views
About the Author
Full name: Daniel Fleshbourne
Forum name: Daniel
Contact: via forum PM
Submissions: Normal · Headline
Full name: Daniel Fleshbourne
Forum name: Daniel
Contact: via forum PM
Submissions: Normal · Headline
Slashdot It!
Submit to reddit
Submit to blinklist
Bookmark on del.icio.us
Add to furl
Share on Facebook
Add to Windows Live
Add to Google- Advertisement
-
-
#1 Posted by DJ Prem on 27 Oct 2003 - 18:55
- Here we go again
-
#2 Posted by EnIgMa-PenGuIn on 27 Oct 2003 - 18:55
- ouch to microsoft again.......
-
(1 reply)
#3 Posted by ~~NeYo~~ on 27 Oct 2003 - 19:27
- These stories are so nice to read, having been rendered in Safari!
-
(7 replies)
#4 Posted by MxxCon on 27 Oct 2003 - 19:45
- GO OUTLOOK GO!
and every single moron who uses outlook deserve to get infected!
all your outlook2k3 users are morons too.
if you don't have half a brain to know it's a HUGE seucrity hole, you don't deserve to be online -
#4.1 Posted by Jon on 27 Oct 2003 - 21:02
- Whilst I normally agree with your posts 100% mmxcon, this one I dont.
If a car is found to be faulty as a result of poor manufacture, do we blame the driver or the company who made it?
If a car explodes because of a pipe bomb up the exhaust, do we blame the guy who put it there, or the driver?
In either case, if you blame the driver you're really deluded. -
#4.2 Posted by stezo2k on 27 Oct 2003 - 22:02
- sorry i have to agree, only MS stuff i use is my OS, still don't trust MS though
-
#4.3 Posted by Octol on 27 Oct 2003 - 22:18
QUOTE (#4.0) ...every single moron who uses outlook deserve to get infected!
Who's calling whom the moron? Just because you're too stupid to not know how to deal with an infected email doesn't mean the rest of us are idiots.
If you don't like Outlook, then don't use it! In the mean time, why don't you just STFU and keep your opinions to yourself until you grow a brain!-
#4.4 Posted by Gumboot on 27 Oct 2003 - 22:58
- Which versions of Outlook are vulnerable? I don't see any mention of Outlook at all in the Symantec virus info. page...
-
#4.5 Posted by mjames on 28 Oct 2003 - 00:48
- I've used Outlook for years and never been affected. It's all about how smart the user is, not the software. Keep your system patched and have updated AV and don't open attachments and you will be fine. Quit bitching about Outlook.
-
#4.6 Posted by MxxCon on 28 Oct 2003 - 15:58
QUOTE (#4.3) Who's calling whom the moron? Just because you're too stupid to not know how to deal with an infected email doesn't mean the rest of us are idiots.
If you don't like Outlook, then don't use it! In the mean time, why don't you just STFU and keep your opinions to yourself until you grow a brain!
right.
you get infected email and YOUR ASS IS INFECTED W/O EVEN OPENING THAT MESSAGE
good luck dealing with it.
and no, antivirus won't help you becuase you got infected BEFORE your virus db was updated.
-
#4.7 Posted by nookadum on 29 Oct 2003 - 05:36
QUOTE (#4.6) Microsoft Outlook users can activate the payload just by opening the email.
Once activated the malware installs itself as 'drv.exe', 'similare.exe' or 'systemchk.exe'.
Man, you're a retard MxxCon. You don't get infected until YOU OPEN the e-mail message. Learn to read before you post your stupid replies.
-
(1 reply)
#5 Posted by redFX on 27 Oct 2003 - 20:25
- Hmm... someone tried sending me the worm via email about an hour ago... norton antivirus 2k4 caught it just fine.
-
(2 replies)
#6 Posted by Banjo on 27 Oct 2003 - 21:03
- *Pats Thunderbird* *BANG CRASH BOOM* Ow... my ears
-
#6.1 Posted by stezo2k on 27 Oct 2003 - 22:02
- bloody love thunderbibrd
best email client there is, very nice looking too -
#6.2 Posted by Dessimat0r on 28 Oct 2003 - 00:21
- Ever used Ximian Evolution on GNOME? Now *thats* an e-mail client
However, I do use Thunderbird on Windows XP.
"We haven't seen many reports of Flea at all," said Graham Cluley, senior analyst at antivirus specialist Sophos." Meanwhile the Sober worm has been around for a few hours and we've seen several reports of infections. It surfaced about midnight and is spreading through email systems as people log on and start checking their mail."
Sober arrives as an email in English or German with the payload coming as an attachment. It uses a wide variety of headers, promising that the attachment contains everything from pornography to an antivirus patch. Once activated the malware installs itself as 'drv.exe', 'similare.exe' or 'systemchk.exe'. It then mails itself to any found addresses using its own SMTP engine. The outgoing emails have spoofed headers, which makes backtracking the virus source more difficult.
There are good logistical reasons for a UK site and office, said Braunstein.
"A lot of features need to be localised. We need to tap into third-party systems for our back-end customer authentication, and we need to be able to track ordering systems and ensure that firms qualify for Seller Protection (a programme that offers fraud protection for merchants)." The company is offering attractive rates for buyers and sellers, and for withdrawals from UK banks.
Braunstein said that where before it would cost 50p to withdraw sums of under £50 it will now cost 25p, while withdrawals over £50 are free.
Braunstein said these low rates are made possible by PayPal's presence in the UK. He said that PayPal planned to leave the rates as they are, adding, "We are losing money on this, but see this as necessary for providing a better service."