lumrant
Thursday, January 29, 2004
 
Does Mom have the dreaded Mydoom virus? It would make for much hilarity if she did!

Or is this just the result of some irritating hanger-on spammer who just wants to get people worried that they have the virus? Here's what Mommer got in her e-mail box today:

> The following message had attachment(s) which contained viruses:
>
> From      : jlum@oldercar.com
> To        : lmcewen@psdssab.org
> Subject   : MAIL DELIVERY SYSTEM
> Date      : Thu, 29 Jan 2004 09:15:37 -0500
> Message-ID:
>
> Attachment                    Virus name               Action taken
> --------------------------------------------------------------------------
----
> text.zip                      I-Worm.Mydoom.a          Removed
>
>
Mom insists that she hasn't mailed these people, and considering that lmcewen@psdssab.org appears to be affiliated with the Parris Sound (Ontario) District Social Services Administration Board, we can assume that Mommer is correct.

So, what the hell? Perhaps a Google search to see if this is a known hoax?

Hmm...apparently, this message is the work of some anti-virus extension to the MDaemon mail server from alt-n Technologies. Legit, it would seem.

And since we know Mom didn't send the e-mail that prompted the "I removed your virus-ridden attachment" reply, I suppose we have to suspect that the e-mail that prompted the reply above was actually sent by the Mydoom-ridden computer of someone who did get nailed by the virus. Maybe one of the things the virus does is spam out mails and spoof the apparent sender addresses based on the address book of the infected user. So, the question becomes: which of Mommer's regular e-mail correspondents is infected?

I say it's Knave. Or maybe Jeff Havrilla!

Speaking of Jeff Havrilla, did anyone else see the news where you can now sign up to get gub'mint-sent e-mail notifications about cyber-security? It's the exciting "National Cyber Alert System," proof that Tom Ridge is doing something besides making dire announcements and changing colors on a big board from time to time!

Is it me, or does nobody in his right mind want to start getting security spams from the government? Jeff needs to rise up out of the shackles of CERT's government takeover and put a stop to this!

- posted by John @ 6:02 PM

Powered by Blogger