I don't email it! And my users BETTER not be using it. -----Original Message----- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 6:13 AM To: Exchange Discussions Subject: RE: Alert: W32/Myparty-mm on the loose
You dont use format.com anymore? -----Original Message----- From: Martin Blackstone [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 9:07 AM To: Exchange Discussions Subject: RE: Alert: W32/Myparty-mm on the loose Absolutely. And from a file blocking point of view, .COM executables have gone the path of DOS, so unless you are still living in the 80's there isn't much use if any for them. -----Original Message----- From: Chris Scharff [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 6:03 AM To: Exchange Discussions Subject: RE: Alert: W32/Myparty-mm on the loose Fortunately we're all blocking *.com right? The *.com viruses are going to take forever to combat from a social engineering standpoint. It's probably worth investing some time in user education on .com files because I think this is going to be a new favorite virus writing style for the next few months. Chris Scharff The Mail Resource Center http://www.mail-resources.com -----Original Message----- From: Martin Blackstone To: Exchange Discussions Sent: 1/28/2002 7:57 AM Subject: FW: Alert: W32/Myparty-mm on the loose -----Original Message----- From: Russ [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 5:45 AM To: [EMAIL PROTECTED] Subject: Alert: W32/Myparty-mm on the loose Be aware that this morning you will likely find a copy of this new mass mailer in your mail systems. This is a pure social engineering attack, it contains an attachment named as a URL with a .com extension. Since .com is also an application, it will be run as such if its double-clicked on. Check with your AV company for updates and/or filtering criteria. If you can, be sure you have attachment filtering enabled at your mail gateway. Outlook Email Security Update, and Outlook 2002, both catch this attachment and prevent it from being available for the user to click on. Cheers, Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] ---------------------------------------------------------------------------- -- The information contained in this email message is privileged and confidential information intended only for the use of the individual or entity to whom it is addressed. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copy of this message is strictly prohibited. If you have received this email in error, please immediately notify Veronis Suhler Stevenson by telephone (212)935-4990, fax (212)381-8168, or email ([EMAIL PROTECTED]) and delete the message. Thank you. ============================================================================ == _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
