[65637] in North American Network Operators' Group
Re: new nasty email virus trick to bypass scanners
daemon@ATHENA.MIT.EDU (Damian Gerow)
Wed Dec 3 22:20:24 2003
Date: Wed, 3 Dec 2003 22:20:53 -0500
From: "Damian Gerow" <damian@sentex.net>
Reply-To: "Damian Gerow" <damian@sentex.net>
To: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, 3 Dec 2003, Steven M. Bellovin wrote:
> Is this in the wild yet? Any other details worth looking for?
> Symantec's AV site apparently has nothing on it.
I would say so - I got it in my inbox earlier this afternoon, and I
traditionally get about three viruses a month.
The virus itself is *exactly* like Mmimail.M, as reported by Symantec.
Except that wendy.zip was definitely password protected.
- Damian
