| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <84EA00803F398243AD22BF36134C87D5F5959D@srvexch01.federatedinv.com> From: FederatedInformationSecurity at federatedinv.com (Federated Information Security) Subject: Netsky.P -> sneaky one! Something different about netsky.p vs all the other variants: I'm seeing this one spread evenly across all my mail gateways. Earlier variants only hit my first MX record, this one is either ignoring MX weights or getting them backwards. Maybe that's why this one's making the rounds a bit more than other recent variants. We're living in interesting times when even viruses have hotfixes... -----Original Message----- From: full-disclosure-admin@...ts.netsys.com [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Andrew Aris Sent: Tuesday, March 23, 2004 5:45 AM To: full-disclosure@...ts.netsys.com Subject: [Full-Disclosure] Netsky.P -> sneaky one! Hi all, just had a mail throught that NAV has detected as being Netsky.P, the text of the mail was: From: jaume@...acceso.com [mailto:jaume@...acceso.com] Sent: 23 March 2004 08:24 To: **** Subject: Re: approved information Authentication required. +++ Attachment: No Virus found +++ MC-Afee AntiVirus - www.mcafee.com I thought the "MC-Afee" bit was a nice touch, might just convince a fair few people! regards, Andrew -- big fish internet ltd, 8 beetham road, milnthorpe, cumbria LA7 7QR tel: +44 (0)15395 64580 http://www.bfinternet.co.uk big fish internet limited t/a bf internet registered in england no. 3558791 -- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Powered by blists - more mailing lists