paypal imposter Mimail variant, W32/Mimail.J-mm, is spreading at high
rate. It arrives with the subject "IMPORTANT" and an attachment called
InfoUpdate.exe or "www.paypal.com.pif
As always, please update your virus definitions!!! For more information, please visit the Symantec Security Response page listed above.
Several variants of this virus are currently spreading. It is highly recommended that you update your virus definitions. It is also recommended that you visit the following link to download the removal tool
There have been several well-known worms that appeared as support messages from Microsoft, the most famous and successful of which was SoBig.B. They were all simple text messages though. The newest attack, known as Swen or Gibe, is much more professional looking. It is well-formatted, uses real graphics from Microsoft and has a lot of attention to detail.
It also has an executable attachment, which the message tries to pass off as a security patch. This is something Microsoft never does. If you ever get an executable attached to a message from a vendor you can take it as a strong sign that the message is not what it appears to be. The message was also not digitally signed, which all real security messages from Microsoft are supposed to be. Microsoft has violated this policy themselves on occasion, but it's still a good reason to raise your suspicions.
W32.Swen.A@mm is a mass-mailing worm that uses its
own SMTP engine to spread itself. It attempts to spread through
file-sharing networks, such as KaZaA and IRC, and attempts to kill
antivirus and personal firewall programs running on a computer.
Microsoft has released an updated patch for the vulnerabilities recently exploited by the W32.Blaster Worm (see below). In order to make sure your system is up to date, please visit the following link:
We have been swamped with complaints about this one. It appears that it is virus season!!! Please click here to obtain the Symantec Removal Tool.
We strongly advise all customers to ensure that your anti-virus software is up-to-date. If you are not running anti-virus software, we strongly encourage you to do so. The MultiPro Network offers a Postini Virus filtering service for e-mail. Please don't confuse this service for complete virus protection. Postini will stop 99% of viruses that are spread through e-mail. But, the last few nasty viruses have been delivered directly over the Internet and not through e-mail.
We highly recommend Norton's Anti-Virus package. We also recommend Macafee's anti-virus package. Either package can be purchased at Staples, Office Max, Wal-Mart or your local computer store. We also recommend AVG. You can download a free edition of AVG for personal use only here:
Don't' forget to update your virus definitions!!!
SoBIG: (All current versions of Microsoft Windows, 95, 98, ME, NT, 2000, and XP)
The SoBIG virus is making its way
around again. This virus typically is passed through e-mail.
Please update your virus definitions as soon as possible. Symantec
(makers of Norton Anti-Virus) have a removal tool that can be downloaded
Many users of Windows 2000 and Windows XP have suffered infection from the W32.Blaster.Worm. If your computer runs Windows 2000 or Windows XP, you may be vulnerable to this worm. If you receive unexpected messages about your system being shut down, or General Remote Procedure Call error, your system may be infected.
Download the Symantec Removal Tool
Actions Taken by The MultiPro Network
It is the policy of The MultiPro Network to provide direct, unfiltered access to the Internet. However, we have taken the following precautionary measures:
The MultiPro Network is temporarily blocking the ports used by this exploit in order to protect our customers. However, these ports are sometimes used for legitimate Internet communications, and the port restrictions will be removed on Monday, August 25, 2003. This port blocking will have NO effect on 99% of our customers. Customers using TFTP applications, and RPC applications may be effected.
We STRONGLY urge all customers using Windows 2000 or Windows XP to run the fix tools above and update your system with the appropriate Microsoft patches.
For all the Geeks (like us):
The ports being blocked are