new worm KEYSTROKE LOGGER
 

Tricky 'MyDoom' e-mail worm spreading quickly
Worm launches attack on site for Unix-owner SCO Group
it has a keystroke logger!

Definitely a fast spreader.

Here's Symantecs description of the worm:
http://securityresponse.symantec.com...varg.a@mm.html

Not a Linux-Security issue; Moved to General

Wow! I went to work today, and when I came back, I had blocked 6 of these, and had reports in my mail! I'm glad I installed that virus scanner in my mail server now!

Ian

Wow, I feel like getting myself a .edu email address. ;)

They stole the keystroke logging code from the FBI's Magic Lantern. Norton and McAfee said they wouldn't alert customers to the presence of this trojan, so that was the only way to get them to do their jobs. :o

http://www.sophos.com/virusinfo/arti...iclantern.html
http://abcnews.go.com/sections/scite...dge011221.html
http://www.techtv.com/cybercrime/pri...386018,00.html
http://cc.uoregon.edu/cnews/winter20...iclantern.html
http://msnbc.com/news/660096.asp
http://www.worldnetdaily.com/news/ar...TICLE_ID=25471

yeah, i guess the virus writer had SOME heart. I don't know why people open these emails anyway, they're just asking for a virus.

MyDoom originated in Russia!
 

Hehe, another Windows virus...
But why does everybody blame it on the Linux community?
MessageLabs says it originated in Russia
where nobody would care about a US lawsuit.
www.groklaw.com

contemplating getting it on purpose...

Uh, williamwbishop, you might not want to do that. It takes over your internet connection by using all its bandwith.

It's for a good cause, and I can always clean it tomorrow....

Heck, I want a more friendly app. Ie. I could start it before I go to school and stop it when I need to use the net.

You should not ever use wget to do anything like that.

I opened it with Ark in a /tmp subdirectory when the first document.zip made it to my Inbox. Then looked at the document.exe file. If I am correct, it can't do anything to a Linux box because this is what it does...
I'm no Linux expert, but if I'm correct, this particular worm can't do anything to a Linux system. Is this correct?

apparently not any threat to Linux/Mac/Unix. even win3.1 seems unthreatened :study:

u think these worms would get smarts, a smart worm would srat and attack in like only hours after it was relaesed, long b4 anyone could alert the worl of a new worm, thus acutaly doing somthing that is meaningful, like dos attack sco and ms? (not realy meaningful, but it is to the virus wirters who are no doupt just out to hurt them)