Slashdot Mirror
20th Anniversary of Michelangelo Virus Scare
An anonymous reader writes "It's twenty years since the first big virus scare. According to security blogger Graham Cluley, who has written up his memories of the hard disk wiping virus, John McAfee predicted that around 5 million computers would be zapped by the virus on March 6th 1992. Of course, the truth was nothing like as bad — but the antivirus business was plagued forevermore by accusations of fear-mongering."
That doesn't seem so long ago.
They'd have been plagued by claims of fear-mongering with or without this incident since they do it chronically.
"Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
And right at the beginning of public awareness of the internet age meant that people were panicking and incredibly misinformed.
News reports said the virus was transmitted over the phone lines (dial up internet) and suggested turning off potentially infected machines on the day of as a precaution. My father took this to mean he should unplug his answering machine that day because it had a computer chip that timestamped messages and other nifty features. In his mind, computer chip + telephone line = susceptible to the virus.
Everyone was touting the Information Superhighway at the time, but no one knew what it was, and very few people actually understood the risk a virus could pose. The media drummed up scare stories (just like those nightly investigations into some obscure not-really-dangerous thing) and the uneducated public took the bait. I'm not going to put the blame on the AV manufacturers for this one.
I'm out of my mind right now, but feel free to leave a message.....
It tenets your computer worthless
Say again?
For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
(1) The author must be new to personal computing if he thinks 20 years ago was the first major virus scare. There were plenty around in the ealry 1980's, and some in the 1970s. Why are people so quick to think the first THEY saw was the first there was?
(2) However many years it has been - 30, whatever - it's a sad, sad commentary on our species that ANYONE gets them any more. People have had 30+ years to learn to use a computer securely, but it seems that most human beings are incapable of learning.
...but the antivirus business was plagued forevermore by accusations of fear-mongering."
Symantec's whole business model goes something like this: "Hey, that's a nice computer you have there. A shame if something were to... happen... to it." It's not an accusation, they're quite forward about it... try unsubscribing from their service once you have it. It's easier to just call the bank and say "cancel my card, close the account, burn the evidence." --- though you still have to figure out how to remove said leech software and disable all the damn warnings. Modern antivirus does not go quietly: It threatens to kill you while you're disabling it, like some sick scifi computer.... "Noooo... daaaaaavee.... I loooovvve yooooouu.. *bzzzrrrrt*"
#fuckbeta #iamslashdot #dicemustdie
What is this, I don't even
For making me feel old. And also for reviving not so fond memories of inadvertantly infecting a whole lab full of PCs with the antiexe boot sector virus at the community college I worked at a year or so later.
Silence is a state of mime.
Once again, undeniable proof that I've been working in IT too long. I remember trying to convince scaremongers it wouldn't be that bad.
http://en.wikipedia.org/wiki/Warhol_worm
that which will work crossplatform, and bring down the internet in 15 minutes
it's a frightening and awesome idea to behold
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
I'm guessing 'renders' after an autocorrect/faceroll attempt at spelling to get a first comment...
I enjoyed the e-mail correspondence with the Apple/IBM joke in the signature. Interesting what two decades would change.
Fear-mongering is hardly anything new. Politicians have been using it since the dawn of civilization.
SJW: Someone who has run out of real oppression, and has to fake it.
I cannot remember which brand of anti-virus it was, but the box clearly referenced Michelangelo and the date & was obviously done to scare people into buying it.
Almost worked for me, but the store clerk explained that since I was still using my parents' Apple //c the program wouldn't work on it, and I probably didn't have anything to worry about anyway.
Hail Eris, full of mischief...
E pluribus sanguinem
Everyone was touting the Information Superhighway at the time, but no one knew what it was
I invented the damn thing, you insensitive clod.
Did anyone else notice the joke in the sig of Norton employee?
Q: What do you get when you cross Apple & IBM?
A: IBM
Awesome.
On a different note, I'm confused by the propagation mechanism of Michaelangelo. The virus itself was installed in the boot sector, but how did it infect a fresh floppy? Did it run from the boot sector?
Also, is there any information on the actual number of computers infected? Was the damage minimal because there were a lot of infected computers that got cleaned with the much-hyped antivirus, or were there not many infections in the first place?
The best way to predict the future is to invent it.
"...Why did they name it after one of the Ninja Turtles?"
I remember seeing one bit of advice back then to just leave your computer off on March 6th, or at the least to change your system clock, since that was when the virus would be triggered. I don't know how many followed that advice, but I am guessing that many people did. I guess many could do that in 1992, unlike today where you can't accomplish anything if the computer is down.
Unless-a five million dollars are transferred to the following numbered account in-a seven days, I will-a capsize five tankers in the Ellingson fleet.
CAPCHA is ignore, lol, carry on Slashdot.
In 1989 there was an earlier Malware scare http://en.wikipedia.org/wiki/AIDS_(trojan_horse) claiming to come from "PC Cyborg Corporation" and demanding money. I worked for a company called Cyborg Systems that made payroll software for IBM Mainframes and the like. PC Plod turned up, wondering if we were branching out...
I was a student at the time and after hearing the news bits about Michelangelo, I found an early virus scanner that was capable of detecting it. I think it was McAfee but not 100% sure. I downloaded it and tested my computer and it was indeed infected.
I asked the virus scanner to remove it since it said it would/could and sure enough it did. The down side was that Michelangelo was a boot sector infector and removing the virus made the system unbootable and I didn't know how to repair that. End result for me was that March 6th came a bit early.
But I wanted to track down where the infection came from so scanned all my floppies. I only found it on a few of them but one of the ones I found it on was the driver disk that came with the motherboard I had recently used to build my system. I checked with some friends in the computer shop where I was at school and they didn't believe it could possibly be the driver disk - but as luck would have it, they had a similar new motherboard from the same manufacturer with a still-sealed driver disk marked the same as mine.
After making sure all was clean, they broke the seal on the driver disk and scanned it. Positive for Michelangelo.
I don't remember the manufacturer name but wish I did. But the thing was that Michelangelo was being spread with driver disks from this one manufacturer and maybe others. No idea for how long.
I think sounding the alarm on viruses is the better path. I know some people tune it out and happily believe that they have never had an infection, but the reality now is that the people writing them don't announce their presence if they can help it. It's not about showing off. It's about money and how much of people's the criminals can snatch.
>>Dial-up internet? 20 years ago? 1992?
I can speak for the Cleveland Free-net having free, public, dial-up internet access as of 1989. (I used it occasionally in 1991-92.) Several local BBSes also had internet gateways, which might be a dedicated ISDN line to a university computer center or even just a periodic uplink.
Are you inadvertently blending the Internet with the World Wide Web? The two terms have basically merged in common parlance, if not for the tech community. Prior to Mosaic's release at the end of '92 / beginning of '93, the hypertext web wasn't particularly popular yet, and was dwarfed by protocols like gopher and ftp. (Boy did that quickly change!)
A preposition is a terrible thing to end a sentence with.
... our viri were written by true hackers and named after great artists. None of these script kiddie generated bots with names that read like poorly named perl variables.
Now get off my lawn.
Check your premises.
Bullshit. Sorry, there is no nice way to put it, but the scare mongering was pure, weapons-grade bullshit.
The REAL problems with any actual critical systems had been readily apparent to any company who would do any kind of forecasting or planning or had any contracts (including any loans given or taken) extending into the future. Even something as non-critical as import-export companies for packaging, or travel agencies or whatever, I know people actually working for them and they were aware at the very least in January 1999 (though most even earlier,) when forecast data or contracts extending in the next year started having problems. I actually know people working for such companies and NONE were waiting for the hype to convince them. As soon as the first report showed up as "uh, it says we'll achieve our goals if we get, uh, minus two thousand dollars a month in sales until 1900", some boss said, "fix the fucking thing NOW."
Meanwhile things were hyped as needing an urgent fix, that had no problem whatsoever. Network CABLES and speakers were hyped as Y2K Compliant, when, seriously, they didn't even have a calendar in them or anything. Scammers made off with billions from the rest of the economy, in upgrades for things that didn't need upgrading, and replacements for things that didn't need replacing.
THAT was what the shameless hype did: help some scammers milk the rest of the economy of money that would have been better spent elsewhere. Anyone who took part in spreading that scare, THAT is what they helped achieve: help some parasites loot the rest of society.
And it didn't even stop there. Things were hyped as going to bring civilization down, like street lights or car electronics which (especially in 1999) didn't even hold the date anywhere and had no use for it, AND which nobody could afford to just yank out and replace wholesale. Yet hordes of shameless snake oil vendors and their PR toadies were hammering non-stop on the idea that OMG, unless your city is blowing its whole budget on their snake oil, come next year all car traffic will halt, airplanes will come crashing down from the sky, and apparently grocery stores will stay closed because everyone is too stupid to figure they still need to go to work if their electronic watch locks up in 2000. It was stuff that wasn't going to get "fixed", not just because it wasn't broken in the first place, but also because nobody was rich AND retarded enough to yank out and replace every single streetlight control module like that. The hype just kept people's fears high, and even tried to amplify them some more, just in case it results in some sale anyway, although chances were 99% that it wouldn't.
The shameless snake oil vendors and the idiots who helped them spread the panic, were NOT actually doing anyone any problem. In fact if it were a just world, we'd put that kind of parasites out of our collective misery and be better off for it.
A polar bear is a cartesian bear after a coordinate transform.
Ah yes, the first (and somehow last) virus I ever had on computers. I had a 486 with I think dos 6.22, and was fairly new to computers. If I remember correctly, didnt it add like 666 bytes to every executable? I actually manually went in with a hex editor and cleaned all my files. Its amazing that there were that few executables on the system that I could do that manually. Did anti-virus software even exist then?
I guess I'll have to learn more about this virus. There was a video around here somewhere... Ah. Here it is. I'll put it on tonight and see what this is all about. It's a movie called Hackers. Hollywood wouldn't lie to me, right?
I got nailed by this virus. I am pretty sure that the computer store where I bought the hard drive from installed it hoping I would bring my computer back to them for service. They were not in business for very long.
I'm not up to date on the latest version of Symantec specifically, but I _do_ have experience with antiviruses which were about as easy to get rid of as an actual virus. Which is to say, not easy at all.
The most trivial example was an old McAffee, actually, which I installed on D: and apparently nobody at McAffee ever heard of people installing programs anywhere else than the default location. Because the first update (after I actually managed to make it update: let's just say that there were other things they had apparently never heard of, like people using a different browser) it installed an updated copy of itself in the default C:\Programs\ location, BUT left the old copy on D: also active and running, which slowed the computer majorly. Needless to say, uninstalling it also only uninstalled one of the copies, while leaving the other on the hard drive and still loaded all over the registry.
Sure, if you were Joe Average and didn't know jack shit about computers, you might think that the uninstall worked and your computer is now free of the buggy antivirus... it just keeps being slow and making your browser act weirdly for some completely other reason. But if you knew enough to at least look at what services are running, you'd discover that it was a more like James Bond: you may think you got rid of him, but he's still around to ruin your party ;)
But generally, given that these things are in a race to the bottom with the actual malware to get loaded even more invisible, at an even lower level, and take over even more functions than an actual virus, it should come as no surprise if the ARE more obnoxious than an actual virus, slow the computer down more than an actual virus, cause more network traffic than an actual virus, and occasionally are also harder to remove than an actual virus.
A polar bear is a cartesian bear after a coordinate transform.
Your memory is fine, it is just your math skills that have rusted with age?
Mind you, I know what you mean. It is even worse when you talk about a date like this and some kid pipes up that he was born that year. It REALLY gets bad if they claim they hadn't been born yet. Mind you, they got it easy, after mentioning that, they will NEVER have to worry about being as old as I am now. Not if they get within reach of my cane.
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
I remember the Michaelangelo virus well. It was the first virus to really hit the national news, and lots of users were worried about it. I was working for a consulting firm in Savannah, GA at the time. I like to tell this story about one of our customers who had heard about the virus on the news.
It was during the Michelangelo hysteria that I received a call from Miss M-, an employee of one of our clients located in the rural town of G-, Georgia.
"Tell me something", she began in her South-Georgia dialect. "How can you get that vahrus they been talkin' about?"
Their computer was an IBM AS400, which was totally immune from Michelangelo. I explained this to her.
"Well, how can you catch that vahrus? How does it move around?"
"Well, um, through the telephone," I answered.
Every day, this woman used her AS400 to call a credit card clearing house computer, and I thought that she could put two and two together.
"The Phone?" she exclaimed. "Well, I mean, how can you get a vahrus over the phone? How can I keep from getting the vahrus? Should I wear gloves or something!"
It finally occurred to me that she wasn't just worried that her computer could get the virus, but that SHE could get the virus from her computer (and I had just told her she could get it over the phone!).
I went through a careful explanation as to how it wasn't a real virus like people get, but was just a little computer program. It was called a virus because it copied itself from computer to computer, sort of like the real thing.
"Oh, my! Well, I'm SO glad I called you. I was SO worried and I didn't know what to do about the vahrus."
I was in such a state of shock all I could do was say, "You're welcome," and hang up.
Proverbs 21:19
I can't remember the name of the virus- but there was a Word Macro virus that my university had the hardest time getting rid of- it was on all the computers in the lab. Wahoo virus- or something like that.
Can't remember the exact phrase- (think it was "Wahoo") - it would randomly insert the word "Wahoo" in documents created on infected computers. I don't think it actually activated until you clicked "print" - so if you wern't checking what you printed off you wouldn't know that the paper you turned into the professor was riddled with randomly placed "Wahoo"s
Virus writers USED to have a sense of humor.
"That's the way to do it" - Punch
Michaelangelo was *supposed* to go off on a Tuesday. So everyone would have that Monday to go in, make sure all of their machines were clean, and be all prepared for Tuesday.
Except many system at the time didn't handle the leap day correctly, so they came in on Monday, booted up the machine ... and the payload hit.
Build it, and they will come^Hplain.
I still get occasional chain letters that say a virus is coming that will wipe your hard drive.
McAfee would go on to found 'PowWow' one of the first chat clients, which had a fascinatingly bizarre "fake native american" shell corporation running it.
Paula Giese, what we would call a 'blogger' these days, wrote an extensive expose on the situation. Of course, she died of some obscure disease, and McAfee went on to live a long and happy life, part of which consisted of becoming a new age guru and publishing new age books under a pseudonym.
This is the foundation of the 'anti-virus' industry, which is founded on Microsoft's business model.... make crap products, enforce an illegal monopoly, and profit. That model has broken down in the age of the smartphone and Apple, and Google. But we shouldn't forget (and you can't, every time you walk into a Best Buy past the wall of anti-virus addons) what this represented and what it means.
I remember the Michaelangelo virus. Lets see.. Yep. I still have a copy. I suppose I ought to throw that old box of floppies away. I've still got: Michaelangelo, Stealth, Stoned.. I used to use them to test and calibrate virus checkers. A month before Michaelangelo triggered, we did some sampling and determined that it was on hundreds of University computers. So, a couple dozen of us had a hectic month chasing it down and eliminating it. It was everywhere. President's office. Multiple Deans. Tons of Researchers and Faculty. If we ignored it, then the loss would have been immense. Come March 6th and we only lost 2 computers. We all breathed a big sigh of relief. Next day, the University paper complained that we had over-rated the threat. I told them I had copies of the virus. I would be glad to put it back on their computers and change the date. Didn't get any takers. Security is full of no-win situations. Sometimes, the best you can do is keep them alive to complain.
Meanwhile there were places with a spaghetti infrastructure so fragile that a nearby fart could take things down so Y2K was one of a pile of real threats. Australia's Telstra (former government telecommunications monopoly and still a monopoly on some bottlenecks) was one such example. Y2K was used as an excuse to actually fix some long outstanding IT problems, but of course only at a tiny amount of the total expenditure on the overlying "compliance" bullshit.
Of course that's a general reliability problem and Y2K was just the straw going onto a very overloaded camel, but there were some real if minor effects worth a small mention in a paper. The media hype was of course insane.
I've seen a Y2K bug as recently as 2008 in Macrovision's "flexlm" peice of licencing shit only designed to punish the honest. A new version decided that perpetual licences expired on 1 January 2000 so for about a week some relatively important software in my workplace was unusable while bug reports went back and forth between the vendor of the useful someware and the owners of "flexlm". The first support guy I talked to didn't have a clue what I was talking about when I mentioned Y2K. Perhaps that's a good measure as to it's real effect.
It lives on my MFM/Bios/Setup disk. You know that floppy to setup the numbers for the MFM drives.... Back in the day, 8086, 80286 etc..
I believe the old DOS msav can find it. or DOS fprot should find it.