Dear list members, Symantec, the company that produces Norton Antivirus, has just issued a new alert about the new W32. Bugbear@mm virus (see below). It was first detected on Monday, yet it has been spreading rapidly. Today HREA's staff e-mailboxes and our listservs have been inundated with infected messages. Please make sure that you upgrade the virus definitions of your anti-virus software. Symantic Security Response pages (http://securityresponse.symantec.com/) are a useful resource for more information on this and other viruses. Best wishes, -Frank ------------------------------------- Frank Elbers, Deputy Director Human Rights Education Associates (HREA) - USA office PO Box 382396 Cambridge, MA 02238 (tel) +1 617 249-0305 (fax) +1 617 249-0278 (e-mail) felbers@hrea.org (Web) http://www.hrea.org ----------- Date: Wed, 2 Oct 2002 17:38:48 -0500 From: "Symantec" <symantec@ntls1.digitalriver.com> Subject: Alert! W32.Bugbear@mm Upgraded to Category 4 WARNING: W32.Bugbear@mm Threat level: Category 4 (Upgraded) Type: Worm Virus Definitions: September 30, 2002 or later (via LiveUpdate) What is W32.Bugbear@mm and how does it affect me? Due to an increased rate of submissions, Symantec Security Response has upgraded this threat from a Category 3 to a Category 4 as of October 2, 2002. W32.Bugbear@mm is a mass-mailing worm. It can also spread through network shares. It has keystroke-logging and backdoor capabilities. The worm also attempts to terminate the processes of various antivirus and firewall programs. Security Response has seen that because the worm does not properly handle the network resource types, it may flood shared printer resources, which causes them to print garbage or disrupt their normal functionality. The subject and attachment name of incoming emails are randomly chosen. The attachment will have a double extension ending in .exe, .scr, or .pif. What action can I take from here? Symantec Security Response posted virus definitions to protect against this threat on September 30, 2002 (via LiveUpdate). All users of Norton AntiVirus who do not have up-to-date virus protection should immediately run LiveUpdate for protection from W32.Bugbear@mm. Virus definitions are available via the LiveUpdate feature in the Norton AntiVirus product or the Symantec Security Response Web site. Symantec Security Response encourages all Norton AntiVirus users to regularly download virus definitions in order to protect against future threats. For more information on how to run LiveUpdate, please click here. Sincerely, Symantec Security Response Team Symantec Corporation ========== HURIDOCS-Tech listserv ========== Send mail intended for the list to <huridocs-tech@hrea.org>. Archives of the list can be found at: http://www.hrea.org/lists/huridocs-tech/markup/maillist.php To subscribe to the list, send a message to <majordomo@hrea.org>, with the following text in the message: subscribe huridocs-tech To unsubscribe from the list, send a message to <majordomo@hrea.org>, with the following text in the message: unsubscribe huridocs-tech If you have problems (un)subscribing, contact <owner-huridocs-tech@hrea.org>.
[Reply to this message] [Start a new topic] [Date Index] [Thread Index] [Author Index] [Subject Index] [List Home Page] [HREA Home Page]