Are the WMF viruses infecting the AD networks?

Are the WMF viruses infecting the AD networks?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Anti-Virus Software    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Are the WMF viruses infecting the AD networks? edavid3001 01-04-2006
Posted by on January 4, 2006, 4:55 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
http://www.acmenews.com/wmf.html


>From what I can tell they are infecting some of the ad networks. I can
not say for 100% positive, due to legal liability reasons. But it sure
does look like they have.

If you don't trust me - wget the document - as it's mostly in plain
text.


Posted by Adam Piggott on January 4, 2006, 5:28 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

edavid3001@gmail.com wrote:
> http://www.acmenews.com/wmf.html
>
>
>>From what I can tell they are infecting some of the ad networks. I can
> not say for 100% positive, due to legal liability reasons. But it sure
> does look like they have.
>
> If you don't trust me - wget the document - as it's mostly in plain
> text.

If they bothered to report the abuse to paypopup.com it would have been
dealt with three days ago. The link should be offline sortly; it wasn't
difficult.


Adam Piggott,
Proprietor,
Proactive Services (Computing)
http://www.proactiveservices.co.uk/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)

iD8DBQFDvEwn7uRVdtPsXDkRAhjdAJ4zvNPd/TW1UDm21drtLiD0P41GDQCgiTJi
5G+PTZcUhB/UcSbvAAwAj3g=
=K5Kj
-----END PGP SIGNATURE-----

Posted by on January 5, 2006, 5:37 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
>>If they bothered to report the abuse to paypopup.com...

The abuse was reported to Paypop. I reported it. No ill will against
Paypop. Any service that allows images could be a distro vector. What
about all these image sharing sites? A few protect us - but not all.
Any link exchange could possibly be a vector.

We have many folks here working long shifts trying to keep ahead of
this issue. While Microsoft doesn't have a patch, there are things we
are doing such as at the gateway.

Though not on our network, we have seen infections from this. Our
employees home machines, for example.

Edwin.


Posted by Adam Piggott on January 5, 2006, 5:49 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

edavid3001@gmail.com wrote:
>>>If they bothered to report the abuse to paypopup.com...
>
>
> The abuse was reported to Paypop. I reported it. No ill will against
> Paypop.

I'm not so sure about that - I spoke to them twice using their "live chat"
service and the first time was told it would be pulled soon and the second
time I couldn't get my point across. They're still forwarding to the
exploit code site! Can't help some I suppose.

I quite agree with you about link exchanges being a vector, which is why I
make efforts to filter them completely. The whole point of only browsing
safe web sites is taken away when they get content from those who are not
trusted! As Gabriele has mentioned elsewhere, Falk AG suffered for a short
while as their systems were duped to serve viruses.

I'm just glad I (and my some of my customers) have got Privoxy :-)

Cheers
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)

iD8DBQFDvaKB7uRVdtPsXDkRAoftAKCI2JI+I/usmRQ9d/kS5q9rTRgIzwCfRKQv
U/K29lNc38/Nq2s4n1l0/gU=
=majd
-----END PGP SIGNATURE-----

Posted by on January 5, 2006, 6:02 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I stand correctly, Microsoft just released a patch an hour ago.

912919

http://go.microsoft.com/fwlink/?LinkId=58471

I am pushing via WSUS at this moment.


Similar ThreadsPosted
Networks and KAV January 9, 2008, 4:01 pm
Good Antivirus solution for school networks... August 24, 2007, 4:41 am
Barracuda Networks (spam-blocking network appliance) March 22, 2006, 10:12 pm
Antivirus Specialist GRISOFT Acquires Anti-malware Expert Ewido Networks April 19, 2006, 8:17 am
2 new viruses September 6, 2005, 3:17 pm
Mac vs viruses ? November 7, 2006, 5:10 pm
Are they viruses? April 27, 2008, 11:58 am
Scanning for Viruses-1. May 27, 2006, 11:07 pm
Scanning for viruses-2. May 27, 2006, 11:14 pm
How are new viruses detected? June 19, 2006, 5:25 pm

The site map in XML format XML site map

Contact Us | Privacy Policy