[130] in sw-release-announce
POSSIBLE VIRUS: W32.Elkern removal tools
daemon@ATHENA.MIT.EDU (Ginny Williams)
Fri May 3 15:10:45 2002
Mime-Version: 1.0
Message-Id: <p05001901b8f88aa2c5cc@[18.152.6.70]>
Date: Fri, 3 May 2002 15:10:33 -0400
To: sw-release-announce@MIT.EDU
From: Ginny Williams <ginnyw@MIT.EDU>
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Greetings!
A mail message got sent to this list earlier today with the subject
line, "W32.Elkern removal tools" that contains an attachment called
setup.exe. This is not a legitimate message and may contain a virus.
Delete this message and the attachment immediately. Do not open it.
I have included a copy of a message sent to the MITVIRUS list earlier
this week describing the KLEZ virus. Jerry Isaacson of the
Information Security Office makes some important suggestions about
how to deal with virus attacks.
We apologize for any inconvenience this may have caused. Please let
us know if you have any questions.
ginny
________________________________________
Ginny Williams
Co-Team Leader
Macintosh Platform Coordinator
Software Release Team
MIT Information Systems
ginnyw@mit.edu
617-258-9311 office
617-253-1266 fax
_________________________________________
X-Comment: mitvma.mit.edu: Mail was sent by pacific-carrier-annex.mit.edu
Date: Sun, 28 Apr 2002 21:28:20 -0400
Reply-To: Gerald I Isaacson <gii@MIT.EDU>
Sender: MIT Virus Notification Service <MITVIRUS@MITVMA.MIT.EDU>
From: Gerald I Isaacson <gii@MIT.EDU>
Subject: KLEZ variant
To: MITVIRUS@MITVMA.MIT.EDU
Just a warning that one variant of the KLEZ virus, which has been very
active on campus, comes as a message purporting to be a cure for the
virus. It tells you to ignore any anti-virus warning messages. The
message itself is KLEZ, delete the e-mail when you get it.
McAfee will detect KLEZ, which spreads through e-mail and through open
windows shares.
For details about the virus see: http://www.nai.com and select the Virus
Advisory notice at the top of the page.
You do not have to open your mail to be infected if you have your mail
handler set to preview messages, that alone will let you be infected if
you are not protected.
Jerry Isaacson
MIT Information Security Office
