Slashdot Mirror
Microsoft Instant Messenger Virus Sweeps Net
Sequence: Get messaged "Go To http://www.masenko-media.net/cool.html NoW !!!" or something similar with another URL. Follow the link. That webpage contains malicious code which gets your messenger contacts and sends a similar message to your contacts. It looks like it uses a vulnerability in formmail.pl as well, although I'm not exactly sure how (I'm not an expert in ECMAscript, sorry, and I have no systems that could possibly be affected by this to test with). I'm sure some of our readers can provide more information in the comments below.
There appear to be several webpages which carried the infected code, not just masenko-media.net. Some webmasters are already taking them down.
Sophistication: moderate. Damage: only your pride.
Solution: probably the latest mega-patch for Internet Explorer will fix the Microsoft bug that allowed this.
Risks: obviously, the code could have done worse than just messaging your contacts. With Microsoft making "messaging" an integrated part of the operating system, any flaws in it can be exploited to affect millions of people instantly, so it is a high-value target. Does it have commensurate high-strength security?
Suck it!
--Metrollica
Just submitted a lengthy story about this. Oh well. On another note, have you signed the futurama petition? Fox is canceling it. http://www.petitiononline.com/futufu/petition.html
PS: First comment? By me? Wow!
How in the hell is this 'informative'? Moderators, put down the pipe and get your asses back in school.
Nice to see this getting modded up!
I have 49 karma and usually don't post AC but I didn't want moderators thinking I used that software...you know, linux. It's kind of embarrasing, you know, since all my friends are Windows users.
USA please execute these terrorists.
Sorry, but I have to post this anonymously as I don't want to be moderated off-topic.
My Slashdot Commenting Study
this luzer used WWW, they didnt whois it right, the domain exists
whoever modded this luzer up was smoking crack
You know a really virulent virus is coming when Microsoft insiders sudden sell as much MS stock as they can. Just like the Enron higher ups they'll cut and run.
:) does that mean that the SEC can move on them due to insider information?
This brings up a question: If a real devastating security flaw is reported to them; they keep mum about it and then a massive security breach occurs that wipes out most MS OS machines out there (you know it's bound to happen
Never attribute to stupidity what can be construed as a monopoly preservation tactic.
Anna says:
See you at Masenko-Media!
HaHa j00 R tEh funAY!
Do you really think /. is a place for reasoned and civil discussion of interesting topics?
Your User ID isn't brand new... Weird...
What is .NET?
Well, here's the answer. =)
Some KDE Myths.
l s. php3
o ut h-metatheme.jpeg Its a
...Gnome/GTK
..and some other I missed out, its not
KDE Myth: Koffice owns, Kspread, Kword..they own, Gnome-office sucks.
Truth:
o Gnumeric has made some huge steps in the last 6 months, with the
semi-intergration of Guppi (graphing)...its a very stable Spreadsheet
application, offers many features that kspread dreams of. More Functions,
more file filters,.. Kspread is more like a budget/cutdown version of
Gnumeric.
To put it blutantly KDE toolbars and general gui design are/have always
been a mess.
o Abiword also offers similar benefits of Gnumeric (features and File
Filters) hey does Kword have a good import/exprt RTF?! alpha-quality? wtf?
How long has Kword been in-existence? and they still cant properly render
RTF still? Even the list of known filters (export and import) available
looks very sad. http://www.koffice.org/filters/status.phtml
Considering Abiword is also being developed for many other platforms, its
done pretty well so far. Can you say WYSIWYG?
o Kivio doesnt offer everything you would want, and if you want specific
stencils, you have to fork out for them...Is this where FreeSoftware is
going? We get cutdown versions of a product,... DIA isnt bound to a
company hard bent in making a profit. So when DIA starts employing some of
these Stencils, what happens then? you spent $$$ for nothing?
http://www.thekompany.com/products/kivio/stenci
KDE Myth: Konq ownz mozilla, netscape etc...
Truth: Mozilla is truely more standards complient, as of late 0.9.4+
series, The Mozilla engine is really starting to shine now, Konq has
always had a hard time rendering any DHTML/Javascript, even with some
webpages the fonts are screwed.
Mozilla isnt Perfect, but hey, everything renders properly. Konq trys to
hard to be "Internet Explorer" on the linux desktop, Its time to
completely drop the KHTML shit, If theres a better, more mature
engine...use it. KHTML was once needed, now its not.. And if you want to
Compare Gnome Galeon,..I dare you.
Nautalus was once critised as being a slow, dog, rah rah.. well it was,
yeah it was slow,...but it has improved, but it seems kde users still like
to think that. Well if it makes you happy. Nautalus is very themeable
http://jimmac.musichall.cz/screenshots/ximian-s
welcome change away from the Windows File Manager look.
KDE Myth: GTK+ is just damn ugly
So you havent tried the abundance of GTK+ themes? cleanice? eazel?
thinice? pixmap?
Yeah, Gtk themes that have been around longer than kde2... and with the
upcoming release of GTK2, themes are getting better and faster. Themes
under KDE just dont look "pretty". Even Gnome icons are better. So
customising Gnome to look differently isnt that hard..however KDE just
looks like that, Mosfet just looks tacky.
KDE Myth: We have all the cool appz. QT/KDE rulesss!
Oh really? So lets now count Evolution, GIMP, Red Carpet, Xchat, XMMS,
Galeon, Balsa, Gnumeric, Pan, Abiword, mplayer, Glade, Anjuta
has plently of cool apps.
KDE Myth: Gnome is loosing, its dead, just use KDE.
Well considering most new distros have KDE preinstalled as default, ie,
Mandrake, Lindows, Caldera, Corel, Suse
surprising Gnome is losing *some* support, But with Ximian and Redhat
Gnome/GTK will keep on living. QT is hardly community developed, GTK+ has always been community developed...and thus we as the linux community we _should_ support it.
THNK Y R WRNG BT T MNY
CPS. S CMMDR 64 CMPTR T
CNNCT T TH NTRNT VN NC
WRT JN KTZ T TLL HM BT TH
MVS DWNLD T WTCH LK BRB
WR LK THT N WTH TH WMN
PML WH DS NT CHS TH BRQ.
THNK T S VRY GD THT M
LLWD T S LL CPTL LTTRS T
PST T SLSHDT ND HP THT T
DS NT HRT MY NGLSH.
YR FRND,
JNS.
P.S. T S VRY SD THT TRRRSTS
HV TTCKD TH MCRSFT
NSTNT MSSNGR. N FGHNSTN
W GRV FR THS LSS.
Some KDE Myths.,,
l s. php3
o ut h-metatheme.jpeg Its a
...Gnome/GTK
..and some other I missed out, its not
KDE Myth: Koffice owns, Kspread, Kword..they own, Gnome-office sucks.
Truth:
o Gnumeric has made some huge steps in the last 6 months, with the
semi-intergration of Guppi (graphing)...its a very stable Spreadsheet
application, offers many features that kspread dreams of. More Functions,
more file filters,.. Kspread is more like a budget/cutdown version of
Gnumeric.
To put it blutantly KDE toolbars and general gui design are/have always
been a mess.
o Abiword also offers similar benefits of Gnumeric (features and File
Filters) hey does Kword have a good import/exprt RTF?! alpha-quality? wtf?
How long has Kword been in-existence? and they still cant properly render
RTF still? Even the list of known filters (export and import) available
looks very sad. http://www.koffice.org/filters/status.phtml
Considering Abiword is also being developed for many other platforms, its
done pretty well so far. Can you say WYSIWYG?
o Kivio doesnt offer everything you would want, and if you want specific
stencils, you have to fork out for them...Is this where FreeSoftware is
going? We get cutdown versions of a product,... DIA isnt bound to a
company hard bent in making a profit. So when DIA starts employing some of
these Stencils, what happens then? you spent $$$ for nothing?
http://www.thekompany.com/products/kivio/stenci
KDE Myth: Konq ownz mozilla, netscape etc...
Truth: Mozilla is truely more standards complient, as of late 0.9.4+
series, The Mozilla engine is really starting to shine now, Konq has
always had a hard time rendering any DHTML/Javascript, even with some
webpages the fonts are screwed.
Mozilla isnt Perfect, but hey, everything renders properly. Konq trys to
hard to be "Internet Explorer" on the linux desktop, Its time to
completely drop the KHTML shit, If theres a better, more mature
engine...use it. KHTML was once needed, now its not.. And if you want to
Compare Gnome Galeon,..I dare you.
Nautalus was once critised as being a slow, dog, rah rah.. well it was,
yeah it was slow,...but it has improved, but it seems kde users still like
to think that. Well if it makes you happy. Nautalus is very themeable
http://jimmac.musichall.cz/screenshots/ximian-s
welcome change away from the Windows File Manager look.
KDE Myth: GTK+ is just damn ugly
So you havent tried the abundance of GTK+ themes? cleanice? eazel?
thinice? pixmap?
Yeah, Gtk themes that have been around longer than kde2... and with the
upcoming release of GTK2, themes are getting better and faster. Themes
under KDE just dont look "pretty". Even Gnome icons are better. So
customising Gnome to look differently isnt that hard..however KDE just
looks like that, Mosfet just looks tacky.
KDE Myth: We have all the cool appz. QT/KDE rulesss!
Oh really? So lets now count Evolution, GIMP, Red Carpet, Xchat, XMMS,
Galeon, Balsa, Gnumeric, Pan, Abiword, mplayer, Glade, Anjuta
has plently of cool apps.
KDE Myth: Gnome is loosing, its dead, just use KDE.
Well considering most new distros have KDE preinstalled as default, ie,
Mandrake, Lindows, Caldera, Corel, Suse
surprising Gnome is losing *some* support, But with Ximian and Redhat
Gnome/GTK will keep on living. QT is hardly community developed, GTK+ has always been community developed...and thus we as the linux community we _should_ support it.
where can I get the source code? I love learning about how virus' work and how they control apps remotely