The Silicon Underground
  Welcome to Dave Farquhar's Silicon Underground Sunday, October 12 2008 @ 02:08 PM CDT  
Theme Changer
Change the look of the site by selecting a theme below:

What's New
STORIES
1 story in last 24 hours

COMMENTS last 48 hrs
  • How to pay off th... [+2]

    • LINKS last 2 wks
    No recent new links

    Google Ads

    User Functions
    Username:

    Password:

    Don't have an account yet? Sign up as a New User

    Firefox


    MyDoom/Novarg Gloom   
    Wednesday, January 28 2004 @ 10:13 PM CST
    By David L. Farquhar

    Just in case anybody is curious, my employer's virus scanners filtered roughly 3,000 copies of Novarg (a.k.a. My Doom) during working hours yesteray. If that's not a record for us, it approaches it. I know we weren't the only one.

    I've heard Novarg/MyDoom/My Doom called the fastest spreading virus yet. I don't have statistics on prior viruses with me, but suffice it to say, its impact certainly felt similar to the big names from the past.

    Although SCO would like people to believe it was written by a Linux zealot, I'm more inclined to believe it was created by organized crime. Maybe the creators hate SCO, or maybe the anti-SCO DDoS was just an added touch to throw investigators off.

    LoveLetter was the first virus outbreak to really have much impact on my professional career, and I noticed something about it. Prior to LoveLetter, I never, ever got spam at work. Not once. After LoveLetter, I started getting lots of it. I don't believe LoveLetter's intent was to gather e-mail addresses for spammers, but I do believe that more than one spammer, probably independently, noticed that viruses were a very efficient way to gather a large number of e-mail addresses.

    I got spam before LoveLetter, and I saw viruses before LoveLetter. But I started seeing a lot more of both very soon after LoveLetter.

    I don't buy any giant conspiracy to sell anti-virus software, nor do I buy any giant conspiracy against SCO. I do believe in bored people with nothing better to do than to write viruses, and I also believe in people who can profit off their side effects.

    I've said it once and I'll say it again. If you run Windows, you must run anti-virus software. You can download Grisoft AVG anti-virus software for free. Don't open unexpected e-mail attachments, even from people you know. Even if it looks safe. Don't send unexpected e-mail attachments either--you don't want anyone to get the idea that's normal. Quite frankly, in this day and age, there's no reason to open any piece of e-mail that looks suspicious for any reason. I told someone yesterday that this is war. And I think that's pretty accurate.

    If you're an intrepid pioneer, there's something else you can do too, in order to be part of the solution. If you join the Linux revolution, you can pretty much consider that computer immune. Macintoshes are slightly less immune, but certainly much less vulnerable than Windows. Amiga... Well, I haven't seen the words "Amiga" and "virus" in the same sentence since 1991 or 1992. But one thing is certain: a less homogenous field is less susceptible to things like this.
      [ Views: 939 ]  


    MyDoom/Novarg Gloom | 5 comments | Create New Account
    The following comments are owned by whomever posted them. This site is not responsible for what they say.
    F-Prot
    Authored by: Andy on Thursday, January 29 2004 @ 08:10 AM CST
    I prefer F-Prot for DOS
    http://www.claymania.com/f-prot.html
    used with Art's F-Prot DOS interface.
    http://home.epix.net/~artnpeg/

    [ Reply to This ]

    MyDoom/Novarg Gloom
    Authored by: keith721 on Thursday, January 29 2004 @ 02:48 PM CST
    My ISP is trapping the virus/worm, but continuing to deliver the bogus messages. Sort of a waste of everyone's time and effort, if you ask me. Why bother telling me you deleted an attachment if the source of the offending message isn't known to me in the first place? Why not just delete the entire message, and not bother relaying it to me?

    [ Reply to This ]

    MyDoom/Novarg Gloom
    Authored by: Gatermann on Thursday, January 29 2004 @ 05:24 PM CST
    SBC seems to be doing that. I haven't gotten any, but my dad informed me he's getting alot of E-Mails from Yahoo/SBC saying they have removed the offending attachement, and sending the email message itself on.

    [ Reply to This ]

    MyDoom/Novarg Gloom
    Authored by: DaveF on Thursday, January 29 2004 @ 10:52 PM CST
    In all fairness, it's much easier for antivirus software to strip the offending attachment than it is to decide whether that message was sent by the virus or a person. I suspect it's our spam filtering software at work that's keeping me from getting those fake bounce messages with the attachment removed.

    With each of these outbreaks, I keep hoping people will learn. Maybe they will before I reach retirement age.

    [ Reply to This ]
    What's Related
  • Grisoft AVG anti-virus ...
  • More by DaveF
  • More from Viruses
    		•

    Story Options
  • Mail Story to a Friend
  • Printable Story Format
    		•


    Calendar
    October 2008
    SuMoTuWeThFrSa
    28
    29
    30
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31
    1
    		Click on any day to see postings and events for that date.

    Referrals

    Top 10 by Comments
    Story TitleComments
    Cheap laptops from Sotec 253
    An untrustworthy vendor 164
    Upgrading an eMachine 125
    eMachine upgrade advice 99
    Why I dislike Microsoft 51
    Upgrade diary: Gateway G6-400 35
    And we're live 30
    The day after the Columbia 22
    How to pray 22
    CD-ROM troubleshooting under Windows 9x 20

    Top 10 Read
    Story TitleViews
    eMachine upgrade advice 67579
    Upgrading an eMachine 57870
    How to view a blg file in Windows 2000 38690
    Cheap laptops from Sotec 29944
    Upgrade diary: Compaq Presario 7360 18027
    Upgrade diary: Gateway G6-400 16974
    CD-ROM troubleshooting under Windows 9x 13860
    Finding an open-source alternative to Ghost 11912
    Big trouble 11231
    Salary cap? Baseball needs something 10484

    Topics
    Home
    Apache (2)
    Baseball (60)
    Book reviews (2)
    Business (1)
    Christianity (57)
    Cooking (1)
    Copyright (15)
    Curmudgeonry (1)
    Design (7)
    DOS (6)
    Games (4)
    Genealogy (10)
    General (498)
    Hardware (147)
    Health (13)
    Human Interest (9)
    Humor/Satire (19)
    Journalism (1)
    Linux (93)
    Macintosh (22)
    Model Building (2)
    Music (32)
    net.culture (40)
    Personal (80)
    Photography (6)
    Retro Computing (26)
    Saving money (58)
    Servers and Networking (17)
    Society (47)
    Software (49)
    Spam (13)
    St. Louis (23)
    This weblog (14)
    Toy trains (72)
    Troubleshooting (7)
    Vendors (6)
    Video (20)
    Viruses (12)
    Windows (116)
    Writing (16)

    Older Stories
    Sunday 14-Sep
  • So is a Costco membership worth it? (1)

    • Wednesday 10-Sep
  • Your CFLs won't kill you (0)

    • Tuesday 09-Sep
  • SSDs come of age? (0)

    • Sunday 07-Sep
  • My hot water heater: 1984-2008 (2)

    • Thursday 04-Sep
  • DOS nostalgia? (2)

    • Sunday 31-Aug
  • What does religion have to do with the United States falling behind in math and science? (3)

    • Thursday 28-Aug
  • Psst... Wanna compete with Best Buy? (4)

    • Friday 22-Aug
  • Why you should always stop at railroad crossings (0)

    • Wednesday 20-Aug
  • How to become a millionaire in 10 years (safely) (0)

    • Sunday 17-Aug
  • Why I still like Debian (2)
    		•

    Who's Online
    Guest Users: 4

    Syndicate!
    Get your RSS/RDF fix here.

    List of all stories
    Click here for a list of all the entries on this site


    Created this page in 2.12 seconds


     Copyright © 2008 Dave Farquhar's Silicon Underground
     All trademarks and copyrights on this page are owned by their respective owners.

    Powered by GL 1.3.x