McAfee Manufactures Virus Threat
The latest "news" to come out of the AV industry is New Virus Infects Picture Files. McAfee put up their description and made sure to issue a wide-spread press release to stir up some interest. McAfee's spokesdrone fans the flames:
- "Potentially no file type could be safe."
That evolution should make computer users think twice about sending pictures or any other media over the Internet, Gullotto said.
"Going forward, we may have to rethink about distributing JPGs."
Now, if you know much about computing, you may be a little suspicious of this. JPEGs are compressed image files that only contain data representing an image to be displayed, not code to be executed. A modification of that data might screw up the picture of your cat dangling from the edge of the kitchen table you like so much, but it won't turn the image into a potential virus transmitter, because the programs that display JPEGs don't read them with an eye toward executing the code. An image file is just data to be displayed. The line between "data" and "code" is a little bit fuzzy - often particular characters or a particular file can be both data and code, depending on the context of how other code handles it. Or a particular file can include both data and code separately, like a Microsoft Word file that includes data (your text) and code (some macro designed to be executed by Word when the document is opened).
But for JPEGs there's a well-designed standard, and it doesn't include executing code of any sort. If a JPEG-handling program doesn't like the data it sees, it should just stop trying to display the image, not decide to start executing code from the image. JPEGs are mostly harmless.
McAfee's claim of a virus spread through JPEGs requires one essential element: you have to have already been infected by ANOTHER virus transmitted by some actual executable code. What it comes down to is:
Once you're infected with a virus, the virus can set you up to be infected by other viruses.
No shit, Sherlock. Once you have enemy code running on your system, you're toast. A virus could alter Microsoft Word so that opening any Word document at all would erase every file on your hard drive, making every single Word document in existence a deadly threat -- to you, and to you alone. But this isn't a new virus threat of any sort. It isn't a breakthrough. It's a consequence of being infected, not a new method of being infected.
Two weeks ago, we ran a story about a cross-platform virus. Like this one, it didn't really exist in the wild. Like this one, it was mainly a PR ploy (by Symantec, in that case). But we thought it had at least some minimal technical interest as a bit of code that would run under Windows or Linux.
McAfee and Symantec (and all the other AV vendors out there) are waging a PR war to "discover" ever more news-worthy viruses to defend against. To get maximum coverage, your new virus needs to do something unique or different -- make your computer turn green, or infect something previously uninfectable, or whatever it might be. Compare this to Klez, a very basic virus similar in most ways to viruses that have gone before, which is still out there looting and pillaging tens of thousands of computers every day, but isn't ideal for AV vendors because they don't have a monopoly on the cure.
The press is catching on, to some tiny extent at least, that most virus alerts are fictitious and just designed to drum up business for the vendors. But it's far easier to repurpose a vendor's press release and call it a story than to dig into real threats that exist on the Internet, and the causes of those threats. Today, like last year and the year before and five years ago, there are major email-borne virus threats out there. (There are still old-school viruses out there too, transmitted by sneaker-net or by downloading suspicious software, but email is clearly the way to go for the discriminating virus creator.) All the real email virus threats share a few distinguishing characteristics:
- They only affect Microsoft Windows. If you aren't running Windows, you are safe.
- They're usually transmitted by email. If you know enough on your own, or you've had a half-hour class in "Email 101", you should be able to avoid executing random files received by email.
- They auto-execute in Microsoft Outlook or Outlook Express. Microsoft has finally made some progress, after many years, in reducing the vulnerability of their flagship email programs. So if you have a recent or fully-updated version of these programs, you may not be as vulnerable as people running older versions. Nevertheless, this was (and still is, since so many people don't have recent or fully-updated versions) a primary vector.
And that's really it. If you don't run Windows, you're safe. If you have basic email skills, you're safe. If you don't run Outlook, you're safe. That's the story of modern viruses, and fortunately or un-, it's a pretty boring one.
McAfee, and Symantec, and everyone else involved in the anti-virus FUD business: lay off. I mean that literally, as in, "Lay off the people you employ for the purpose of drumming up new virus threats." Lay off the public relations people you employ to say things like, "We may have to rethink about distributing JPGs." Lay off the BS. There's a real market for your product, people who (for whatever reason) are using Windows and/or Outlook, and haven't received the half-hour training course necessary to avoid viruses. You can market to them based on your fast responses to real virus threats - you don't need to manufacture any more.
Pot! Kettle! Black!
Do you even lift?
These aren't the 'roids you're looking for.
I would consider the Goatse picture to be an information virus, and if McAfee can innoculate against it, more power to them.
Well I was just rubbing some hot grits into my bits to sooth them after a marathon sesh with Anal Cox when I spotted this FESTERING SHITE of a post.
Please refrane from posting such anal discharge in future and get back to buggering Timmay!
n/t
Simple, dont run Windows.
There are no virii on Linux, because (relatively) no-one uses it. Your solution: everyone should use it. Nice one.
unngh! unngh! must... stop... thinking about... filling cmdrtaco with my hot load... unnghhh!
Yeah yeah yeah yeah yeah yeah
Yeah yeah yeah yeah yeah yeah
I think I did it again
I got it stuck in the toaster oven
Oh baby
I'm hung like a mouse
But it doesn't mean that I'm serious
'Cause to lose all my pubes
That is just so typically me
Oh baby, baby
:Chorus:
Oops!...I did it again
I am an ass, got lost in the game
Oh baby, baby
Oops!...You think I'm in love
That I'm sent from above
I'm Fat Dog's not so Big Cock
You see my problem is this
I'm dreaming away
Wishing that I, was drinking my piss
I cry, watching my life
Can't you see I suck in so many ways
But to lose my nads in such an awful way
That is just so typically me
Baby, oh
:Chorus:
Oops!...I did it again
I am an ass, got lost in the game
Oh baby, baby
Oops!...You think I'm in love
That I'm sent from above
I'm Fat Dog's not so Big Cock
Yeah yeah yeah yeah yeah yeah
Yeah yeah yeah yeah yeah yeah
-----------
Yes, I'm rising to the bait. Go back to letting your mum wipe you.
The computer is your friend.
In my opinion, Scientology is a cult you should avoid.
You though banner ads were annoying...now they're DANGEROUS!
This post has been infected with a virus.
please run the following lines of code
format c:
hit pc, use sledgehammer
throw pc, out window
It could happen. If a JPG can be dangerous then this post can be too
uh, Symantec IS Norton dumbass
This sounds like the exact same tactics the Democratic Party uses to scare people into voting for their candidates.
Give serendipity a chance.
You only get a virus from executing code. JPEGs contain no code to be executed. Period. HTML is a totally unrelated issue. (notice the L stands for Language...)
You are WRONG WRONG WRONG, and a GAY LITTLE FAGGOT. The poster was RIGHT RIGHT RIGHT.
"McAfee and Symantec (and all the other AV vendors out there) are waging a PR war to "discover" ever more news-worthy viruses to defend against."
... av vendors" is at about the same sensational level.
So there is not one AV vendor with any scruples. ALL vendors are evil.
While I'm not trying to discredit the fact that the two "bogus" announcements out there are likely the product of an over-imaginative marketing department, making blanket statements like "all the
"oohhh... I didn't know Schopenhauer was a philosopher!"
Gee, Why don't you try this:
:)
<a href="http://fucksociety.ca/chasey.jpg">http:// fucksociety.ca/chasey.jpg</a>
Works best in MSIE
Note: This is not a virus, but still, don't click the link if you've got some critical stuff running on your system, and be prepared to kill a ton of tasks.
Karma: Ran over your dogma.
speaking of 'law'...
doesn't this marketing ploy used to scare people into buying McAfee products sound an awful lot like domestic policy here in the U.S.A?
Get your Unix fortune now!
if it looks like a vagina, don't put your penis in it
Then I've got to stop fucking roast beef sandwiches!
mod this inwards.