new nasty email virus trick to bypass scanners
Damian Gerow
damian at sentex.net
Thu Dec 4 03:20:53 UTC 2003
On Wed, 3 Dec 2003, Steven M. Bellovin wrote:
> Is this in the wild yet? Any other details worth looking for?
> Symantec's AV site apparently has nothing on it.
I would say so - I got it in my inbox earlier this afternoon, and I
traditionally get about three viruses a month.
The virus itself is *exactly* like Mmimail.M, as reported by Symantec.
Except that wendy.zip was definitely password protected.
- Damian
More information about the NANOG
mailing list