MyDoom Strikes Again

Renegade334 writes "Months after the last attack of MyDoom, MyDoom.AI returns. Like usual it was spread by e-mails with claims to have attachments that contain passwords for adult websites."

Nice

[MPHellwig]

The clients that are affected will not dare to tell me.

Actually, it's under control

[sebFlyte]

It's being reported that thanks to pro-active action from the porn site in question, the problem is under control...

Re:Actually, it's under control

[Mz6]

No... The email contained LINKED images to the website in question. Therefore, all the website had to do was swap the linked images in the email for warnings that this message contians a virus.

Re:Actually, it's under control

[IainHere]

It's being reported [zdnet.co.uk] that thanks to pro-active action from the porn site in question, the problem is under control...

--
One swallow does not a summer make.

Excellent sig. Did you choose it just for this story?

Re:Actually, it's under control

[Skidge]

Porn to the rescue, yet again! We have that industry to thanks for many things: rapidly accelerating the advance and acceptance of new media technologies, keeping First Amendment lawyers employed, and giving sorority girls a shot at fame during Spring Break, to name a few.

Re:Actually, it's under control

[maxwell+demon]

Unless they use a mailer which doesn't show images ... but then, they probably won't open random attachments anyway.

Re: Actually, it's under control

[Black+Parrot]

> Porn to the rescue, yet again!

Porn is like God: it helps those who help themselves.

Re:Actually, it's under control

[CrankyFool]

And then of course there's the Coupling (British relationship comedy -- think Friends, but smarter and funny) version -- 'One swallow does not a relationship make.'

Passwords for Adult Websites!!

[Tibor+the+Hun]

Where? Which ones? How do we get them?

Re:Passwords for Adult Websites!!

[lukewarmfusion]

I'll email 'em to you.

Re:Passwords for Adult Websites!!

You must have Microsoft Windows with Outlook Express installed to get them. I'm sorry, Linux is useless here...

Re:Passwords for Adult Websites!!

[mrtroy]

Free pron site right here!!!!

This is all I need for a month!

Yay

The virus companies write variants and release them to enforce the upgrades. I worked at a popular AV company doing front end work, not the actual engine, and when we got together for drinks the engine writers would talk about upgrade paths from what they were working on. Ever wonder why most viruses don't destroy your system? Because there's no money in an erased system. There is a lot of money in AV upgrades.

Re:Yay

I saw that movie too!

A = Corruption probability
B = Number of hosts on the network
C = Cost of patch
X = Cost of reinstall

If A + B + C is less than X, then they don't do a download!

Re:Yay

[Tim+C]

Extraordinary claims require extraordinary proof: so prove it.

Re:Yay

[BVis]

I'd like to put a plug in for avast! antivirus as well. Updated often, unobtrusive, scans peer to peer and AIM traffic (if you're so inclined), just works. Finds stuff Norton doesn't even look for. http://www.avast.com/ .

Learned?

[E+IS+mC(Square)]

I think those who get affected actually deserve to be affected - mostly, they are the ones who keep on spreading those "forward this to 10 ppl in 10 seconds or you will throw third nipple". Give 'em more.

Re:Learned?

[MightyMartian]

> I think those who get affected actually deserve
> to be affected - mostly, they are the ones who
> keep on spreading those "forward this to 10 ppl in
> 10 seconds or you will throw third nipple". Give
> 'em more.

And if it was just those morons too thick-headed to read or listen to the TV, then I'd say "infect away!"

Unfortunately net admins like myself end up having to stare down the face of a hundred thousand zombies trying various means to bust in or break down my network.

Given how its spread...

[DaveAtFraud]

Like usual it was spread by e-mails with claims to have attachments that contain passwords for adult websites.

I'm surprised it wasn't a /. reader who discovered it!

Last time..

[wpiman]

Last time our company got taken down by this thing-- the IT department got it fixed after two days.. In that week's company newsletter- there was a report about how quick our IT department worked to fix the problem. Guess who authored it- head of the IT department.

What they failed to mention was that they never did the critical updates that would have prevented this. Way to go guys. I guess it is all about how you report it.

Re:Last time..

[grub]

If your IT head doesn't have system updates somewhat automated with AV and spyware software he should be fired on the spot. That report he sent out was nothing more than a PR move to cover his ass.

I already have 6 of these.

[SteelV]

I already got 6 of these in my gmail account, from people I don't know. Thankfully, they all ended up in the spam folder. Nice!

Eat that

[Mr2cents]

Eat that, Duke Nukem Forever!!

Where can I download this new MyDoom thingy?

Everyone forgets the most important question

[RattRigg]

Do the passwords work?

the rapture must be at hand!

[RafeDawg]

remember how God used to smite masturbators?

Re:the rapture must be at hand!

[iluvcapra]

Now he just smites kittens.

Re:the rapture must be at hand!

[mangu]

Onan was killed by God because he refused to have sex with his late brothers wife

He didn't refuse to have sex with her, he just pulled out when he came. Just like in pr0n videos.

Amazing! "Free pussy" and brains switch off!

[swb]

I'm continually amazed by how quickly people turn their brains off when "free pussy" is in the air..

Next version of the virus

will probably have links to provocative pictures of Bill Gates posing with computers.

The virus will fail miserably.

Re:What's MyDoom?

[stratjakt]

Believe me, OSX and Linux have more than their share of stupid users.

They post here on slashdot all the time. They tell you silly shit like iPods make great external hard drives, and work well as backup devices.

They talk about using Gentoo as a backend server, because all you have to do is put "emerge sync && emerge -u world" in your crontab and nothing will ever go wrong, and the -funroll-loops in your CFLAGS will make it unga bunga faster.

Re:this is IT !! i'm outta here.

[innerweb]

This is the right attitude. It used to bother me that my clients would not listen and do things that were good for them (even the simple easy dirt cheap things), then I figured out, it is all about comfort levels. If the client is comfortable where things are they will not change. SO, now I simply give them a written explanation of what they need to do (or not do), and list the fee for fixing each of the problems they might encounter if they do not do as instructed. Get this, many have actually thanked me for letting them know the cost of fixing things up front. Instead of just doing things the right way, they were happy to have a dollar amount they could plug into their projected expenses. If that does not tell you anything, nothing will.

We recently had major flooding. Several of my clients have businesses in the flood zone (much cheaper rent). Most of those followed my advice and moved their hardware upstairs. A few did not and are not paying me major bucks for reinstalling, rebuilding and recovering everything they need. If they had just taken a day and moved eveything the first time (they are all now moving upstairs), then they would have saved much money and even more downtime.

But, in the end, how they run their business is their choice. All I can do is offer my advice and hope they listen.

InnerWeb

Re:Question! Corporate-wide antispyware software?

[MightyMartian]

> Could you advice ANY good anti-spyware software
> which can be deployed corporate-wide? (with trial
> version)

Sure, a baseball bat. Beat the dummy who downloads spyware to death. For a trial version, try a plastic bat, so they'll just go Ouch!

Command to check if your system is susceptible

[captainclever]

uname

Yeah right

[pcgamez]

"Like usual it was spread by e-mails"

No, it was spread by stupid users.

Porn

[jeffy210]

Ah, never underestimate the stupidity of horny people.

Systemic Problems vs User Problems

[nurb432]

The real problem is not the platform, its the user.

Anytime you allow users to do anything, you have the potitional for an infection that casues troubles.

Some platforms may currently be more prone to problems, but you can be assured whom ever has the largest market share will be the one under the greatest attack in the first place.

Remember too, some problems are platform independant, such as the JPG problem from last year.. Or sendmail.. or ssh.. or or or..

But regardless of any systemic issues, excluding true worms that come in at a system level, it still mostly boils down to users clicking things they shouldnt.. And it doesnt matter what system they are using.. They can still run a trojan and at the very least hose their profile.. ( and will ).

So i guess there is a solution afterall, no users.

Disclaimer: I'm a BSD user and am also virus free, but im not so blind ( or stupid ) to think we are invunerable.. We just are not a direct target, yet.

Re:Systemic Problems vs User Problems

[Quino]

The reason doesn't matter, the fact remains that switching will make things better.

If half of computer users switched, we'd still be better off -- anything would be better than the monoculture we have now.

The fact that Linux/OS X/BSD whatever (as good as they are, and I do think they're innately more secure than MS offerings) aren't perfect either is no reason to stand by and just live with these Microsoft virus/worm problems.

There are valid reasons why it may not make sense for some people to switch, but pointing out that Linux/OS X/etc. aren't perfect (only better) either isn't one of them.