RE: FBI Virus Alerts

From: Krul Thomas (Thomas.Krulat_private)
Date: Fri Sep 28 2001 - 11:15:15 PDT

Next message: Neil Dickey: "Syn packets hitting port 80, not webserver"

Previous message: Kinsey, Robert: "RE: Lots and lots of DNS lookups and increased number of /default .ida?XXXXXXXXXXXXXXXXXXXXXXXX...s"
Maybe in reply to: twistsiwtat_private: "FBI Virus Alerts"
Next in thread: Eaton, Arthur: "RE: FBI Virus Alerts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On a related note, ISTS posted "A Predictive Analysis on Cyber Attacks
During The War On Terrorism" recently:
http://www.ists.dartmouth.edu/ISTS/counterterrorism/cyber_attacks.htm

From that page:
"This report analyzes the possibility of cyber attacks against U.S. and
allied information infrastructures in response to anticipated military
strikes
against terrorists and nation-state sponsors. While many have speculated
about the possibility for such cyber attacks, this report provides a
detailed, fact-based assessment of the situation. It examines recent trends
and precedents and sets out in detail the potential types, targets, and
sources of cyber attacks that we should be prepared for. It also makes
concrete recommendations for protective actions."

Apologies if this has been posted by someone previously.


-----Original Message-----
From: twistsiwtat_private [mailto:twistsiwtat_private]
Sent: Thursday, September 27, 2001 1:03 PM
To: incidentsat_private
Subject: FBI Virus Alerts



*** PGP Signature Status: unknown
*** Signer: Unknown, Key ID = 0xEACEDD72
*** Signed: 9/27/01 8:03:52 PM
*** Verified: 9/28/01 2:14:03 PM
*** BEGIN PGP VERIFIED MESSAGE ***

Hi All,

My boss has just had a phone call from one of our software vendors who has
in turn been talking with a rep from Cardinal Software.  He said that the
FBI
have just finnished a meeting with many of the major software vendors
regarding a flood of new Terrorist related viruses about to be released in
the next couple of hours.  Some are supposed to be new, others are variants
of Nimda (which will presumably have a more profound effect this time).

Has anyone else heard these reports?  If it is true, we could have an even
larger epidemic on our hands.  I know everyone this list has their patches
upto date though right?  =)  As well all know though, new explouits are
released everyday so be vigilant people & keep an eye out.  I would expect
Cardinal to lie about this kind of thing to their customers...

Scratch ya later
Stu


*** END PGP VERIFIED MESSAGE ***

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Neil Dickey: "Syn packets hitting port 80, not webserver"
Previous message: Kinsey, Robert: "RE: Lots and lots of DNS lookups and increased number of /default .ida?XXXXXXXXXXXXXXXXXXXXXXXX...s"
Maybe in reply to: twistsiwtat_private: "FBI Virus Alerts"
Next in thread: Eaton, Arthur: "RE: FBI Virus Alerts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Sep 28 2001 - 11:27:51 PDT