snopes.com  

Go Back   snopes.com > Urban Legends > Computers

Reply
 
Thread Tools Display Modes
  #1  
Old 12 January 2008, 09:38 AM
snopes's Avatar
snopes snopes is offline
 
Join Date: 18 February 2000
Location: California
Posts: 109,626
Icon18 Warning on stealthy Windows virus

Security experts are warning about a stealthy Windows virus that steals login details for online bank accounts.

http://news.bbc.co.uk/1/hi/7183008.stm
Reply With Quote
  #2  
Old 12 January 2008, 11:34 AM
BluesScale BluesScale is offline
 
Join Date: 29 December 2005
Location: Woolhampton, Berkshire, UK
Posts: 1,355
Default

This report is basically accurate and the advise basically good

Blues
Reply With Quote
  #3  
Old 12 January 2008, 11:39 AM
lazerus the duck
 
Posts: n/a
Default

Quote:
Computers running Windows XP, Windows Vista, Windows Server 2003 and Windows 2000 that are not fully patched are all vulnerable to the virus.
I was fully patched and got a nasty dose of it, the first I knew about it was when my virus detection software got infected and stopped working.
Reply With Quote
  #4  
Old 12 January 2008, 11:53 AM
BluesScale BluesScale is offline
 
Join Date: 29 December 2005
Location: Woolhampton, Berkshire, UK
Posts: 1,355
Default

I am yet to see attacks (for this) that work on a fully patched box but that doesn't mean that there aren't any. Did you look at you internet history afterward?

Blues
Reply With Quote
  #5  
Old 12 January 2008, 01:27 PM
KKHB
 
Posts: n/a
Default

Quote:
...booby-trapped websites that use vulnerabilities in Microsoft's browser to install the attack code.
Does this mean that those of us using Firefox (or other browsers) are on the safe(r) side of this?
Reply With Quote
  #6  
Old 12 January 2008, 02:05 PM
BluesScale BluesScale is offline
 
Join Date: 29 December 2005
Location: Woolhampton, Berkshire, UK
Posts: 1,355
Default

Maybe. Some attacks will use an exploit for whatever browser you connect with. MPACK (for example) is just as happy to exploit Firefox as IE.

As far as we are aware, this is not using any new exploits and patched IE is safe - but investigations are ongoing

Blues
Reply With Quote
  #7  
Old 15 January 2008, 09:01 AM
charlie23
 
Posts: n/a
Default

I'm using Kaspersky but don't know if this is in their definitions or not, I can't find any reference to mebroot in their virus list. Is there a way to check the MBR for it ?
Reply With Quote
  #8  
Old 16 January 2008, 04:27 PM
BluesScale BluesScale is offline
 
Join Date: 29 December 2005
Location: Woolhampton, Berkshire, UK
Posts: 1,355
Default

Details of how it works and how to fix it here - http://blogs.technet.com/antimalware/

Blues
Reply With Quote
  #9  
Old 16 January 2008, 07:12 PM
lyra_silvertongue's Avatar
lyra_silvertongue lyra_silvertongue is offline
 
Join Date: 26 September 2007
Location: Metro Detroit
Posts: 2,794
Default

Another reason I'm glad I don't use windows anymore. Work computer is Linux, home computer is a Mac.
Reply With Quote
  #10  
Old 17 January 2008, 02:45 AM
Ajay
 
Posts: n/a
Default

I'm on a Mac too. {Insert smug Windows troll ->here<- }
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On

Forum Jump


All times are GMT. The time now is 01:58 AM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2017, vBulletin Solutions, Inc.