Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Computer Virus Turns 25 in July

Posted by CmdrTaco on from the thats-silver-right dept.

bl8n8r writes "In July of 1982, an infected Apple II propogated the first computer virus onto a 5-1/4" floppy. The virus, which did little more than annoy the user, Elk Cloner, was authored in Pittsburgh by a 15-year-old high school student, Rich Skrenta. The virus replicated by monitoring floppy disk activity and writing itself to the floppy when it was accessed. Skrenta describes the virus as "It was a practical joke combined with a hack. A wonderful hack." Remember, he was a 9th grader when he did this."

30 of 194 comments (clear)

  1. Imagine his wealth... by dada21 · · Score: 5, Insightful

    ...if he had patented the virus.

    1. Re:Imagine his wealth... by vivaoporto · · Score: 5, Funny

      And imagine how secure the computing world would be ... if Microsoft had a monopoly on virus creation.

    2. Re:Imagine his wealth... by Jansingal · · Score: 3, Informative

      Why does this article not mention Fred Cohen, who found the first virus?

  2. Script kiddie age? by InvisblePinkUnicorn · · Score: 5, Interesting

    Is there any information on the average age of people who have written the major viruses of the last couple decades? Has this age gone down over time?

    1. Re:Script kiddie age? by fermion · · Score: 3, Insightful
      I suppose I will be pedantic about this as I don't think we should minimize the creativity. I think of script kiddies as someone who takes existing tool, say some published code and MS Visual studio, and repackages it. They, in fact, just use scripts.

      What this kid did was go into the the Apple internals and figure out how to do something himself. In hindsight it was not such a great feat, but is was a feat that was at least somewhat novel.

      OTOH, kids have nothing but time on their hands and if the parents and schools don't keep them busy, then they find other ways to stay busy. The more cleaver one can produce some real havoc. What impresses me is the high school kid that does something creative and interesting with his or her free time, instead of being randomly malicious. The really good ones will go out and start applying their skills to the betterment of humanity, but really any bright kid that chooses a path that is not gratuitously destructive is a win in my opinion.

      --
      "She's a scientist and a lesbian. She's not going to let it slide." Orphan Black
  3. Don't forget the Lehigh Virus by R2.0 · · Score: 4, Interesting

    I was at Lehigh when this was released. One of the first self propagating viruses, with a time delay to allow for greater infection, that was actually destructive. It was sort of a non-event to the users there; imagine my surprise when I looked it up years later and it figures prominently in virus history.

    --
    "As God is my witness, I thought turkeys could fly." A. Carlson
    1. Re:Don't forget the Lehigh Virus by rudegeek · · Score: 4, Interesting

      One of the first self propagating viruses

      Still, sounds like something very harmless. You should see Amiga-related (not AmigaOS related as much of the population used Amiga as game console) viruses, like Saddam. I think orginal Saddam could be proud this piece of horrible software.

      Then, with release of AmigaOS 2.04, we had new kind of viruses. They would spread like... er... viruses? They patched all systems calls dealing with resources loading and all your fonts, device drivers, libraries, executables was infected. I still remember Happy New Year 1996 -- it took me two days with no sleep to clean my disk. Anti-virus software that could deal with it was designed by someone who hated people. First, you passed what it should scan. Then, when process started, at every instance of virus it would start FROM THE TOP. And it would say "Oh, you have an virus. It was deleted. Continue?" You HAD to click it to start again. My Libs: directory had over 6500 shared libraries. All infected.

      (Yes, I realize it was done to prevent from recursive infection. This should not be the case since all system vectors was checked all the time by the very same program.)

      I think this guy was hired to do 'Allow or Cancel' component. :-)

      --
      Rocksteady, are you ready to ska?
  4. Has this been done before? by TheBearBear · · Score: 4, Funny

    I take a snapshot of my sister's desktop, then open it in photoshop and clone all sorts of icon and littering it all over like a mess, then save the file and use it as a desktop background. She comes over to me screaming that her desktop is a mess and she couldn't find anything, and she can't open an icon when she clicks on it, much less highlight it! AHAHAHAHAHA!!!

    Not a virus, just a prank but still :D

    1. Re:Has this been done before? by Anonymous Coward · · Score: 5, Funny

      Shouldn't it be your nap time?

    2. Re:Has this been done before? by Lumpy · · Score: 4, Funny

      nope a better one is to put a photo screensaver on a It professionals machine, then have it display only 1 image a BSOD.

      The guy was one of the types that always reminded you of his certifications. yet it took us telling him it was a screensaver to stop him from tearing apart his PC.

      It was funnier than hell, he stopped chasing us with sharp objects about 4 days later.

      --
      Do not look at laser with remaining good eye.
    3. Re:Has this been done before? by Anonymous Coward · · Score: 4, Funny

      I had a boss named "Dave" once. I replaced his Windows sound events with snips from 2001: a space oddessey. For instance "I'm sorry, I can't do that, Dave".

      I miss that job!

    4. Re:Has this been done before? by Phroggy · · Score: 3, Informative

      So how do you screencap a BSOD? Using an emulator, such as VirtualPC.
      --
      $x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
      $x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
  5. The reason why Macs are so much more secure... by vigmeister · · Score: 4, Funny

    is that the viruses for it are traditionally written by 9th graders who use the B: drive...

    --
    Atheist: Buddhist in a Prius
    1. Re:The reason why Macs are so much more secure... by achilles777033 · · Score: 3, Funny

      I beleive Ctrl-Alt-Delete gives the best response to this. http://cad-comic.com/comics/20060513.jpg No one gives a shit.

  6. Happy birthday! by friedman101 · · Score: 5, Funny

    Finally, you're old enough to rent a car.

  7. Stealing thumder from the Mac users by My+name+is+Bucket · · Score: 3, Funny

    Mac OS has never had a virus problem.

  8. Your computer is now stoned! by CPE1704TKS · · Score: 3, Interesting

    Anyone remember that one? It was such a pain in the ass at the time, but it didn't go around and delete files, etc. And we got it from pirating program after program. Solution? Install a pirated version of the first anti-virus programs. I'm so old that I can't remember what exactly it was... It might actually have been Norton.

  9. Not the oldest. by ReallyEvilCanine · · Score: 4, Interesting
    I had an Atari 800 back in 1979. In 1980 I took a small piece of malware someone else wrote and turned it into a virus which would remain memory-resident and self-replicate. After formatting any diskette the victim inserted into the drive, it wrote a hidden file to infect any machine the disk was then used on. This was a payback for the people who were getting pirated software free and then turning around to sell it. I'm pretty sure I still have the source code for it somewhere.

    I'm not claiming mine was the oldest because I'm sure someone did something similar on the old heavy iron even earlier than my little "payload" as we called then it.

  10. 1988 Morris internet worm by peter303 · · Score: 4, Interesting

    That was the first virus I remember, but its just 19 years old. It paralyzed the internet when it was released. But then the Net just had a few thousand nodes, most of them in the university. The worm was supposed to count nodes by sending a copy of itself to every entry in the host table, but the author forget to account for duplicates and circularities. So it just replicated until it filled the process spaces and internet bandwidth.

  11. Um no. it wasn't by Lumpy · · Score: 3, Informative

    1981 - Apple Viruses 1, 2, and 3 are some of the first viruses "in the wild," or in the public domain. Found on the Apple II operating system, the viruses spread through Texas A&M via pirated computer games.

    --
    Do not look at laser with remaining good eye.
  12. Bullshit! by Anonymous Coward · · Score: 5, Funny

    I had sex with a PDP-11 in 1973 and it gave me chlamydia. That predates this asshat by almost a decade. Where's my trophy?!

    1. Re:Bullshit! by catdevnull · · Score: 4, Funny

      Your trophy is that warm sensation everytime you pee, amigo.

      --

      I might know what I'm talkin' about, but then again, this is Slashdot...
  13. Answering my own question, sort of by InvisblePinkUnicorn · · Score: 5, Informative

    Of the "ten most destructive PC viruses of all time":

    CIH, by Chen Ing Hau, who "attended a university" at the time of release ~1998.
    Melissa virus, by David L. Smith, age 31 in 1999
    ILOVEYOU, by university student for thesis, 2000
    Code Red, author unknown?
    SQL Slammer, 2003, by a 21-22 year old
    Blaster, 2003, variant by an 18 year old
    Sobig, possibly by 30 year old Ruslan Ibragimov?
    Bagle, author unknown?
    MyDoom, unknown
    Sasser, by 17 year old

    Not much to go on.

    1. Re:Answering my own question, sort of by macdaddy357 · · Score: 3, Funny
      You forgot Monkeypoo!

      VIRUS WARNING:

      Attention: Computer Labs Inc., makers of Virucide antivirus software have identified a highly dangerous new Trojan worm, MONKEYPOO. It will usually appear in an e-mail with the subject, "Congratulations.You have won!" it will then prompt you to click a link to collect your cash prize. It can also freely spread across networks.

      Monkeypoo will read your address book, and mail a copy of itself to every address it finds, and it will look like you sent it. It will then invoke the secret self-destruct command held over from the original IBM PC's 8086 command set. This short line of code will cause the processor, ram, hard drive and any floppy drives to spin out of control and overheat until key components melt together, and will most likely cause a fire.

      James Winklee, a former IBM programmer had this to say. "We developed the self-destruct code so government agencies such as the FBI and CIA could quickly and completely destroy compromised computer systems before an enemy could get their hands on classified information. When we saw how violently a PC executing the command burst into flames, we decided not to publish its existence. It has been kept a secret successfully until now. If you get infected with the Monkeypoo Trojan worm, you may notice your computer going completely haywire. Physically unplug it from power as fast as you can, and send it in for repair. Only a professional can remove this one."

      While Computer Labs Inc and other antivirus software makers are working on a solution, they haven't got one a home user could successfully run yet. "This is the worst kind of malicious code I have ever seen." said Marcus Polan of Computer labs Inc. Use extreme caution.

      It is important that as many computer users as possible receive this warning, so send it out to as many people as you can. The entire Internet and every PC connected to it is at risk.

      --
      How ya like dat?
    2. Re:Answering my own question, sort of by uncoveror · · Score: 3, Funny

      Are there viruses named after the other three Ninja Turtles?

      --
      The Uncoveror: It's the real news.
  14. Really Really Not the oldest. by Rob+T+Firefly · · Score: 4, Funny

    A couple thousand years ago, I deliberately infected a wooden abacus with termites, and put it in the mud hut with all the other abaci.

    --
    Slashdot Burying Stories About Slashdot Media Owned
  15. The first virus? I do not think so. by Asmodai · · Score: 4, Interesting

    Sorry, but Creeper beat that Apple II virus by about 10 years.

    http://www.viruslist.com/en/viruses/encyclopedia?c hapter=153310937

    Furthermore http://www.viruslist.com/en/viruses/encyclopedia?c hapter=153310910 states that such ideas and programs already started in the 40s and 50s.

    --
    Jeroen Ruigrok/Asmodai
  16. Re:Pretty sad! by Hal_Porter · · Score: 5, Funny

    My first questions in an interview to hire someone is, "Are you a programmer?" The second question is,"Did you goto school for this?" If they answer "yes" then they don't get the job.

    CS Graduates don't goto school. They instantiate a CSStudent (using a StudentFactory class). CSStudent implemnents a functor Notify callback as part of the abstract Student interface. Using the Observer pattern, they call the Attach method of the ConcreteSchool class which implements the School Interface. Then the ConcreteSchool class calls Notify and passes a Notification object containing a ConcreteClass object which the Student stores in a Dictionary class, Knowledge. In the examination Use Case, the Notify is called with a ExamNotification object containing a List of ExamQuestion objects. CSStudent intantiates an Iterator which iterates though the list and uses the Dictionary object's Lookup method to answer each question, calling before calling ExamNotification's Answer method.

    After reception of a Graduation, ExamFailure or DrugsBust notification, the CSStudent destructor is called. This in turn calls the Knowledge destructor and the Knowledge Dictionary is deleted.

    --
    echo -e 'global _start\n _start:\n mov eax, 2\n int 80h\n jmp _start' > a.asm; nasm a.asm -f elf; ld a.o -o a;
  17. still infecting...in emulators by joshuac · · Score: 3, Informative

    Not enough time right now to go into depth, but I sorting through a collection of 5.25" Apple images, I saw this message popup on one of the emulators "bootup". Had no idea what it was and didn't bother looking too far in depth into it. This was back in 2006, when I was organizing my collection of stuff I had written as a kid, random public domain disks I had copies, of, random things I had made copies of as a kid from my gradeschool computer lab, etc...in the process, plenty of "catalog" commands ran (this is how it spreads, he has the 6502 source http://www.skrenta.com/cloner/clone-src.txt on his website and a few more items about it there), plenty of disks "swapped" out of virtual floppy drives, so I'm sure the infection is well spread.

    Maybe I'll keep it around as a living pet in my emulator :)

  18. This Was Not the First Virus by Evil+W1zard · · Score: 3, Interesting

    According to other reporting this is not actually the first virus. The first virus really should be the Creeper virus that infected DARPANET systems back in the early 70's. According to Viruslist, the virus was written for the Tenex operating system and was capable of independently gaining access through a modem and copying itself to a remote system. Once infected, the system would display the following message: "I'M THE CREEPER: CATCH ME IF YOU CAN."

    The Reaper was written to replicate and find Creeper and delete it. Then came Rabbit in 1974 which caused systems to crash because it screwed system performance due to replicating so fast (wonder why it was called Rabbit.....)

    --
    News Reporters Make Tasty Polar Bear Treats!