[ISN] New Word Macro Virus (With a twist)

From: mea culpa (jerichoat_private)
Date: Thu Jun 25 1998 - 14:26:00 PDT

  • Next message: mea culpa: "[ISN] RSA Data Security Joins Finjan's Java Security Alliance"

    Forwarded From: "Prosser, Mike" <Mike_Prosserat_private>
    Originally From: Risks Digest
    
    Date: Mon, 22 Jun 1998 01:32:39 +0300
    From: Mikko Hypponen <Mikko.Hypponenat_private>
    Subject: New virus posts user documents to public newsgroups
    
    A Word macro virus called WM/PolyPoster was recently found. As the number
    of macro viruses is soon reaching 3000, there's nothing special about
    this.  However, under the right conditions, this virus sends copies of a
    victim's Word documents to 23 different Usenet newsgroups under subject
    lines like "New Virus Alert!," "Important Princess Diana Info" and "How to
    find child pornography." 
    
    Risks are obvious and three-fold:
    
    1. Private and confidential data is disclosed to the world
    
    2. When unsuspecting fellow users download and read these documents, they
    get infected themselves
    
    3. The user's name get's archived to services like DejaNews as posting
    messages related to software pirates or child porn.
    
    More details at:
    http://www.DataFellows.com/news/pr/eng/fsav/19980618.htm
    http://www.DataFellows.com/v-descs/agent.htm
    
    This virus is not known to be widespread at this time.
    
    
    -o-
    Subscribe: mail majordomoat_private with "subscribe isn".
    Today's ISN Sponsor: Repent Security Incorporated [www.repsec.com]
    



    This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 12:56:47 PDT