July 18th, 2003, 06:21 AM
New Worm Poses as Microsoft Patch
Antivirus company TruSecure is warning users about a new e-mail worm that is beginning to spread on the Internet and over the Kazaa peer-to-peer network.
Complete Article : Here
The new worm, dubbed Gruel, is a mass-mailing worm that masquerades as a Windows software patch from Microsoft and as a virus-removal tool from Symantec, according to an alert from TruSecure.
July 18th, 2003, 06:49 AM
Wow that is scary worms and viruses are getting smarter and smarter making it look like a patch from Microsoft and Symantec. Geeze
July 18th, 2003, 07:14 AM
Heh....considering the way SOME admins are about patching their boxes making a worm look like a M$ patch could KEEP it from spreading....
Seriously though, this just goes to show how insideous some people can be...be careful folks!!!
It isn't paranoia when you KNOW they're out to get you...
July 18th, 2003, 07:46 AM
Thats the problem with loading patches and software form untrusted places. The best would be to get your patches and software direct from the company that made them or from a trusted vendor. Especially if u r installing these on business software.
U just have to be more careful.
July 18th, 2003, 07:58 AM
after reading this post i opened outlook express, norton viri scanner filpped out and voila i had an e-mail w/attachment for this very same thing.
I looked further into this and norton virus scan identified this virus as "w32.gibe.b@mm
Obviously i didn`t include the attachment......
this is the latest version of security update, the
"July 2003, Cumulative Patch" update which eliminates
all known security vulnerabilities affecting Internet Explorer,
Outlook and Outlook Express as well as five newly
discovered vulnerabilities. Install now to protect your computer
from these vulnerabilities, the most serious of which could allow
an attacker to run executable on your system. This update includes
the functionality of all previously released patches.
System requirements Win 9x/Me/2000/NT/XP
This update applies to Microsoft Internet Explorer, version 4.01 and later
Microsoft Outlook, version 8.00 and later
Microsoft Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the earliest opportunity.
How to install Run attached file. Click Yes on displayed dialog box.
How to use You don't need to do anything after installing this item.
Microsoft Product Support Services and Knowledge Base articles
can be found on the Microsoft Technical Support web site.
For security-related information about Microsoft products, please
visit the Microsoft Security Advisor web site, or Contact us.
Please do not reply to this message. It was sent from an unmonitored
e-mail address and we are unable to respond to any replies.
Thank you for using Microsoft products.
With friendly greetings,
Microsoft Customer Services
©2003 Microsoft Corporation. All rights reserved. The names of the actual companies
and products mentioned herein may be the trademarks of their respective owners.
July 18th, 2003, 02:32 PM
A lot of virusses tend to lure people into double-clicking the attachment. It's just another form of social engineering. If the email looks legit, they will think it's legit and run the attachment.
Like r8devil said, NEVER install a patch from an untrusted source (even if you recieved it from a friend). ALWAYS download it from the official support website.
Experience is something you don't get until just after you need it.
July 18th, 2003, 02:40 PM
Please note a thread already started regarding this "Threat"/"Virus"/"Worm" in the Antivirus forum
"Consumer technology now exceeds the average persons ability to comprehend how to use it..give up hope of them being able to understand how it works." - Me http://www.cybercrypt.co.nr