Connect with us

Worm and Virus attack

Discussion in 'Electronic Design' started by Aubrey McIntosh, Sep 19, 2003.

Scroll to continue with content
  1. Dusty Rhodes wrote...
    Yes, from what I've read it uses adress book info. I got a peak of
    750 in a single 5-minute period Friday morning, dropping to 1200/day
    and now down to about 820 per day, a real pain to deal with.

    Apparently I'm in the address books of quite a few folks who failed
    to download updates to their Microsoft operating system. BTW, Dusty,
    was that loser or user you were referring to? Or a combination?

    - Win
  2. Jim Thompson

    Jim Thompson Guest

    I guess my feelings should be hurt... I've received not a single
    one... but my server does some pre-filtering.

    ...Jim Thompson
  3. Jim Thompson wrote...
    You should have gotten a few, before your ISP learned all
    the new email worm's details. Another interesting tidbit,
    my domain provider uses the highly-acclaimed spam assassin,
    which sadly fails to get more than about 1% of the offending
    email, possibly due to its semi-random naming scheme, which
    has prevented me from coming up with viable filters.

    BTW, propagating this stuff from email address books has
    an interesting implication: "hiding" your email address
    by making changes, such as you've done, should not be much
    help. That's because the folks who store your address in
    their address books will have repaired the modifications.

    - Win
  4. Dusty Rhodes

    Dusty Rhodes Guest

    No one in particular. But it's very BOFHish to consider those who don't
    bother to keep their systems patched or secured to be clueless lusers.


  5. Jim Thompson

    Jim Thompson Guest

    Never got a single one. Indeed quite strange, but I'll not complain.

    (My *web forwarding* ISP uses SpamCop *and* SPEWS lists plus "filters"
    which they won't divulge to me.)

    ...Jim Thompson
  6. Apparently the addresses are being actively harvested from news
    spools, using the From: (and Reply To:?) lines in the headers of
    posts. The fastest I've seen reported so far is about 40 minutes,
    from a usenet post with a brand new address to the receipt of a
    Swen email. This is possibly why Jim_T has not been affected.

    It has been reported that Swen also discards addresses
    with the ASCII strings 'delete' or 'nospam' in them.

    So how do you like my new address?
  7. Rex

    Rex Guest

    I think I knew once, remind me what BOFH means.
  8. Daniel Haude

    Daniel Haude Guest

    On 24 Sep 2003 16:27:32 -0700,
    Like in mine. But that's a Pine addressbook on a Unix system.
    It ain't my fault! ;-)

  9. Doug McLaren

    Doug McLaren Guest

  10. Guest

    Guest Guest

  11. ( wrote...
    Indeed, I'm well over 10000 so far, sheesh!
    That's not what I read at Symantec, but I've had it, as of
    now my email address will require hand-editing to function.

    - Win
  12. Winfield Hill wrote...
    OK, one more try...

    - Win
  13. Winfield Hill wrote...
    OK, two more tries...

    - Win
  14. Winfield Hill wrote...
    Whew, three attempts should do it!

    - Win

  15. Winfield Hill wrote...
    Double-check, sorry folks...

    - Win

  16. Joe Legris

    Joe Legris Guest

    What about ?
  17. Joe Legris wrote...
    Newsguy has a mailbox service with 25MB of space (about
    6 hours of the full-scale email bombs I've experienced),
    but I haven't learned how to use it. As far as I can see
    sending mail to doesn't work.
    When I create a posting [email protected]_picovolt-dot-com is the
    new From: address I see, but
    is the address you get, go figure.

    In future y'all will have to edit my address above. :>(

    - Win

  18. Win, I have never used an address book on a computer. I have a folder
    of text files with names and addresses that I copy and paste into the
    e-mail program.

    Take a look at this page:
    and you will see that you can't find the e-mail address in the page
    source. I only use that e-mail address for the website. The actual
    address is stored in a small JavaScript on the web server. If you look
    at other pages on the site and click one an e-mail button you will see
    that each page generates a customized subject line to let me identify
    the page an e-mail was sent from.
  19. Guest

    I have been using spam bouncer for a long time, and until a few days ago,
    I only got 3-5 spams a week. Now I get about 10 a week, and installed
    spam assassin to catch those spma boucner did not. I am back down to 3-5
  20. Russell Shaw

    Russell Shaw Guest

    A large monoculture of identical os/apps with the same holes is
    the cause of an increasing population of virus writers and anti-virus
    vendors that all feed on each other and make networks vulnerable
    to cascading failure:
Ask a Question
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Electronics Point Logo
Continue to site
Quote of the day