Sasser Worm hits hard -- 05/07/2004

The Sasser Worm has been all over the news and for good reason. You do NOT have to open email attachments or even have a web browser open to "catch" Sasser. Sasser is a network aware worm that exploits a known Microsoft vulnerability and spreads by scanning randomly chosen IP addresses on Microsoft systems that have not been patched. Sasser can run on, but not infect Windows 98/ME systems. It's targets are Windows 2000 and XP Home/Professional.

If you have Norton AntiVirus or another scanner running, you may have been surprised to learn that Sasser snuck in between updates. Make certain your scanner and virus definitions are fully updated.

Symptoms of Sasser include extremely slow performance, slow or non-existent internet connections, and the computer will shut down and restart.

 Make sure you are protected by updating your OS now with all of the Microsoft  patches available at the Microsoft Windows update site: http://windowsupdate.microsoft.com.

Back

Netsky and the Beagle, or is it Bagle? -- 03/8/2004

I have seen a marked increase in viruses lately. In particular, the W32.Beagle (also known as Bagle) and W32.Netsky variants. Both are rampant mass-mailing worms which can bring your internet connection to its knees.

By the increasing rate of new variants, it seems as if virus programmers are now competing against each other directly to achieve the "Top Spot" on antivirus websites.

 Make no mistake, it is essential to have an updated virus scanner installed on your computer. If you do not have one, you WILL eventually.make contact with a virus. It's that simple. There are now over 100, 000 known viruses.

 Make sure you are protected by updating your OS now with all of the Microsoft  patches available at the Microsoft Windows update site: http://windowsupdate.microsoft.com.

Back

How big can a worm get? About SoBig... now a Category 4. -- 08/21/2003

The SoBig worm is now being touted as one of the most active email worms to date. 

As always, it is important to keep your AV programs updated. Make sure you are protected by updating your OS now with all of the Microsoft  patches available at the Microsoft Windows update site: http://windowsupdate.microsoft.com.

If you feel you are infected by the SoBig worm, Symantec has created a removal tool located at: http://securityresponse.symantec.com/avcenter/venc/data/w32.sobig.f@mm.html.

Click here for a link to more information about this threat. 

Back

*The Blaster worm. * -- 08/11/2003

The Blaster worm is making headlines all over today. It only affects systems using Windows 2000 and Windows XP (Pro/Home). If you are using Windows 98 or some other OS, you are NOT affected.

Blaster exploits a vulnerability in these two operating systems made public by Microsoft recently. It is spreading wildly, but the big news is the DoS (Denial of Service) attack which is expected to trigger on August 16th, 2003 against Microsoft Windows Update. It is intended to prevent people from updating (or patching) their computers to prevent the spread of the worm. 

As always, it is important to keep your AV programs updated. Make sure you are protected by updating your OS now with the patch available at this Microsoft site: http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-026.asp.

If you feel you are infected by the blaster worm, Symantec has created a removal tool located at: http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.worm.html.

 Click here for a link to more information about this threat. 

Back

*BugBear worm is back - with a vengeance. * -- 06/07/2003

Bugbear has returned as the new variant Bugbear.B worm. It is a rather poorly programmed, but still destructive worm which can attack through the preview pane of your e-mail client.

BugBear.B also has the ability to disable various anti-virus programs, so as always, it is important to keep your AV programs updated.

 Click here for a link to more information about this threat. 

Back

*Fizzer worm records your keystrokes and spreads through KaZaA * -- 05/24/2003

Fizzer is a mass-mailing worm which also contains some other fairly unique traits. It has a "backdoor" which allows a remote attacker to communicate with it (on your computer) through AIM (AOL Instant Messenger). It also contains a keylogger recording your own keystrokes which may include such personal things as passwords and credit card information. 

Fizzer is spread through email by attacking your Windows address book. It also spreads itself through KaZaA by disguising itself as a music (.mp3) file.

Fizzer also has the ability to disable various anti-virus programs, so as always, it is important to keep your AV programs updated.

 Click here for a link to more information about this threat. 

Back

*SQL Slammer slams the Internet* -- 01/27/2003

A worm which attacks through known vulnerabilities in Microsoft Corp.'s SQL Server hit the Internet hard Friday night and early Saturday morning, slowing Web traffic to a crawl as it caused massive "denial of service" attacks globally. One of the most notable results was that many ATM services were temporarily shut down.

The worm, known as "SQL Slammer" (SQL is often pronounced SEE-QUILL), should not affect most home users (other than the denial of service slowdowns on the Internet); however, server administrators should guard their systems immediately. 

 Click here for a link to more information about this threat. 

Back

*Hobble Worm Alert* -- 12/03/2002              Distribution Wild

W32.Hobble.H@mm is a mass-mailing worm that replicates by email and attempts to spread across the KaZaA file-sharing network. It also attempts to terminate the processes of various security related programs.

W32.Hobble.H@mm is a .NET executable that is written in C# and runs only in the .NET Framework. The email message has the following characteristics:

Message Body: "all we are saying, is give peace a chance. no to war and terrorism."

Attachment: Topeace.exe

Also Known As: I-Worm.Alcaul.af [KAV]

 Click here for a link to more information about this threat. 

Back

*AOL 8.0 Cranks Up The System Requirements* -- 10/17/2002

If you are thinking about upgrading to AOL 8.0, be sure your computer meets the minimum system requirements:

Windows 98 System Requirements:

1. Pentium class processor 166 MHz or higher
2. 64MB (megabytes) of RAM minimum
3. Hard drive free space required for install: 224 MB*
4. VGA, SVGA or better display
5. 800x600 screen resolution for optimal viewing
6. 28.8 Kbps or faster modem or other means of an Internet connection
7. Internet Explorer 5.0+

* Requires up to 314 MB of free space if IE 6.0 needs to be installed.

Windows ME System Requirements:

1. Pentium class processor 166 MHz or higher
2. 64MB (megabytes) of RAM minimum
3. Hard drive free space required for install: 210 MB
4. VGA, SVGA or better display
5. 800x600 screen resolution for optimal viewing
6. 28.8 Kbps or faster modem or other means of an Internet connection
7. Internet Explorer 5.0+

Windows 2000 System Requirements:

1. Remote Access Services (RAS) Installed
2. Pentium class processor 166 MHz or higher
3. 64MB (megabytes) of RAM minimum
4. Hard drive free space required for install: 199 MB*
5. VGA, SVGA or better display
6. 800x600 screen resolution for optimal viewing
7. 28.8 Kbps or faster modem or other means of an Internet connection
8. Internet Explorer 5.0+

* Requires up to 280 MB of free space if IE 6.0 needs to be installed.

Windows XP System Requirements:

1. Pentium class processor 233 MHz or higher
2. 64MB (megabytes) of RAM minimum
3. Hard drive free space required for install: 199 MB
4. VGA, SVGA or better display
5. 800x600 screen resolution for optimal viewing
6. 28.8 Kbps or faster modem or other means of an Internet connection
7. Internet Explorer 6.0+

Back

*AOL Ends Third-Party Pop-Ups* -- 10/15/2002

America Online Announces End to Third-Party Pop-Ups New Policy Will Enhance Member Experience DULLES, VA - October 15, 2002 - America Online, Inc., the world's leading interactive services company, today announced that it will no longer accept third-party pop-up advertising or merchandise sales on the flagship AOL service. The announcement was made by Chairman and CEO Jon Miller at today's "AOL Live@Lincoln Center" salute to members, celebrating the launch of the new AOL 8.0. Mr. Miller said: "This new policy will contribute to our most important goal -- a better member experience. AOL is an effective medium for advertisers, and we're working with our partners to continually improve the opportunities available to them by offering enhancements like standardized sizing and placement of advertising. The most important thing we offer advertisers, though, is the chance to be part of a service that consumers love, and we've determined that pop-ups aren't the best way to do that. By ending third-party pop-ups and merchandise sales we are giving our members what they want -- which in turn will make AOL an even better vehicle for our advertising partners." The new policy will take effect as the Company works through the inventory of ads and merchandise promotions it is already committed to run. AOL will continue to utilize a variety of mechanisms including pop-ups to notify members about key features on the service, and on a limited basis, to make special offers from AOL Time Warner. Members will notice a significantly reduced volume of pop-up ads once the company has fulfilled its current commitments. AOL further announced today that it will make it easier for members to find and change their marketing preferences, and opt-outs will no longer expire on an annual basis. About America Online, Inc. America Online, Inc. is a wholly owned subsidiary of AOL Time Warner Inc. Based in Dulles, Virginia, America Online is the world's leader in interactive services, Web brands, Internet technologies and e-commerce services. Contact Info: Andrew Weinstein, America Online 703-265-1746 Courtesy www.aoltimewarner.com

Back

*Outlook Express Security Alert* -- 10/14/2002

Microsoft Security Bulletin MS02-058

Unchecked Buffer in Outlook Express S/MIME Parsing Could Enable System Compromise (Q328676)

This is a "critical" security alert. If you have Outlook Express V5.5 or V.6.0 on your computer, please read this article and apply the patch to close the vulnerability.

Microsoft Security Bulletin:

Download location: http://www.microsoft.com/windows/ie/downloads/critical/q328676/default.asp

Back

*Netscape/AOL Loses an Important Spyware Appeal* -- 10/04/2002

Netscape/AOL lost an important appeal before New York's second circuit court. This paves the way for our courts to next determine whether Netscape/AOL did, as is being alleged, with their spyware, violate the Electronic Communications Privacy and Computer Fraud and Abuse Acts. Click here for the appellate court's decision (requires Adobe Acrobat Reader).

Gibson Research Corporation (Shields Up, etc.) has been at the forefront of the anti-spyware campaign. 

Back

*BugBear Worm Alert* -- 10/04/2002

A new worm is spreading rapidly. Bugbear@mm is a mass-mailing worm. It can spread through network shares. It has keystroke-logging and backdoor capabilities. The worm also attempts to terminate the processes of various anti-virus and firewall programs. Click here for a link to more information about this threat. 

Back

*Security Alert* -- 09/09/2002

Windows XP Service Pack 1 fixes a HUGE security black hole (and possibly creates its own stability hole).

This is the first Service Pack (SP1) for Microsoft Windows XP (all versions). It fixes a number of issues with XP and also makes changes which allows Microsoft to comply with recent DOJ (Department of Justice) rulings in the Microsoft Anti-Trust case.

There are several significant changes which should be noted here. The SP1 fixes a security hole which lets anyone put a link on a website that can wipe out certain hard drive directories. Microsoft has known about this for months! 

The SP1 increases support for the USB 2.0 standard and the .NET initiative. There are many other bug fixes and changes including a new version of Microsoft Messenger.

Microsoft does recommend you install this patch, but there seems to be an unusually high number of reported problems after updating to SP1. If you choose to update, please be sure you create a new System Restore Point before running the installation. If your system starts acting up, System Restore should get you back to where you were before the problems began.

If you do not have a fast Internet connection to download the SP1 update (the full update is a HUGE file of  nearly 140MB, but there is an express installer which is about 30MB), then you have several other choices:

• Call us at Trinity Tech Center and we can provide this update service for you

• Contact Microsoft to receive the SP1 update on a CD. The CD costs U.S. $9.95 plus shipping and handling.

• There is a relatively simple method of patching the security hole which anyone can apply without the Service Pack.

  1. Start a file search in Windows XP.
  2. Search for a file named uplddrvinfo.htm
  3. Once you've found the file, delete it or rename it. Doing so will not hinder your ability to use Windows XP.
• Easier yet, just download the file XPdite.exe from our downloads section and run it. This tiny program will analyze your system and perform the necessary changes to make your XP system secure from this critical flaw.
• If you have a specific issue with XP, then perhaps you could search the Microsoft XP website for that individual fix rather than applying the entire update. 

It should be noted that, as always, there have been some problems reported with installing the SP1. Some administrators and a few major manufacturers are taking the "wait and see" approach to SP1. In most cases, it should install without problem, but nothing is guaranteed when it comes to Microsoft software.

Back

*Virus Alert* -- 09/08/2002

The Gigger JavaScript Worm poses as a Microsoft Outlook upgrade. Click here for the full story.

Back

Non-Required Service Pack-- 09/06/2002

Windows 2000 Service Pack 3

This is the third Service Pack for Windows 2000 and updates all versions from SP1 on. This is a non-required update and generally falls into the "don't fix it if it ain't broke" category. Please click here for a complete list of fixes in SP3. If you have an issue which SP3 addresses, then go ahead and make the update.

If you do not have a fast Internet connection to download the Windows 2000 SP3 update (the express installer runs from about 22MB up to 34MB depending on your version of Windows 2000 and which updates you already have installed), then you have several other choices:

• Call us at Trinity Tech Center and we can provide this update service for you

• Contact Microsoft to receive the SP3 update on a CD. The CD costs U.S. $14.95 plus shipping and handling.

It should be noted that, as always, there have been some problems reported with installing the SP3. Some administrators and a few major manufacturers are taking the "wait and see" approach to SP3. In most cases, it should install without problem, but nothing is guaranteed when it comes to Microsoft software.

Back

*Exclusive* -- 08/24/2002

What should you do when a lightning storm approaches. Click here for the experience.

Back

Home