Is the Virus a Hoax or Not ?

Is the Virus a Hoax or Not ?

Is the Virus a Hoax or Not ?

Thursday, 09 August 2007 08:24

At some point in time you may get an email from a friend or someone you know warning you of the latest virus that can destroy or wipe your computer hard drive or otherwise cause damage your computer in some. Is the warning of the virus real or is it just another virus hoax or urban legend?

Avoiding Virus Infection

There must be thousands of known viruses for windows driven computers and the problem of avoiding a virus infection is on everybody's mind. So how do tell if a warning for a virus is a hoax or not? To minimise the risk of catching a real virus there are only a few things you need to think about.

If you get an email with a warning of a virus from somebody you don't know or even somebody that you do know there is a strong possibility that the virus is a hoax.

People you don't know will simply not send you a warning about a virus, however if there are mail attachments there may be other malicious spyware codes hiding in the email. The simple action here is to immediately delete emails from strangers that offer a warning about a virus. The virus warning will almost definitely be a hoax.

If you get a virus waning email from a friend it is also likely to be a hoax, but beware of any attachments in this type of email. If you open this email warning about a virus treat it with suspicion and get confirmation from the Internet.

The Written Word

There may be !exclamation marks! or words written in UPPERCASE CAPITAL LETTERS almost shouting about it in the original virus warning if so this is probably a virus hoax. Well to be rational about this, all legitimate anti virus organizations will not send out warnings using exclamation marks and uppercase characters, they will issue formal warnings with all kinds of references which support the warning and they will not send these out to personal emails unless you have subscribed to a such a warnings service. These virus warnings are usually written by somebody else, somebody trying to attract your attention and simply spread chain-mails around.

If you actually open a virus warning from a trusted friend and if after reading the warning about the virus and it sounds empty, without substance or has no third party references to the name of the virus then it is clearly a virus warning hoax.

Identify the Virus Warning Hoax

If you can identify the name of the virus or even use the email virus warning title, search the internet and try and find a trusted third party anti virus expert to confirm if the virus is a hoax or not. You will probably find that almost all emailed virus warnings are a virus hoax.

When you do your search, if Google finds nothing, go to a site that specializes in virus hoaxes and run a search. Here are some such sites to get you started:-

McAfee - http://vil.mcafee.com/hoax.asp
Urban Legends and Folklore - http://urbanlegends.about.com/
Urban Legends Reference Pages - http://www.snopes.com/
Hoaxbusters - http://hoaxbusters.ciac.org/
TruthOrFiction.com - http://www.truthorfiction.com/
Symantec Security Response Hoaxes - http://www.symantec.com/avcenter/hoax.html
McAfee Security Virus Hoaxes - http://vil.mcafee.com/hoax.asp

Remember if you get an email warning about the latest virus that can !WIPE YOUR COMPUTER! or wipe your hard drive it is most likely a virus hoax or what they commonly call an urban legend.

Latest Virus Alerts

Net-Worm.Win32.Kido
Kaspersky Lab has detected that multiple variants of Kido, a polymorphic worm, are currently spreading widely.
Net-Worm.Win32.Kido exploits a critical vulnerability (MS08-067) in Microsoft Windows to spread via local networks and removable storage media.
The worm disables system restore, blocks access to security websites, and downloads additional malware to infected machines.
Users are strongly recommended to ensure their antivirus databases are up to date. A patch for the vulnerability is available from Microsoft.
Detailed descriptions of Net-Worm.Win32.Kido.bt, Net-Worm.Win32.Kido.dv and Net-Worm.Win32.Kido.fx are available in the Virus Encyclopaedia. A dedicated removal tool is available here.
Virus.Win32.Gpcode.ak
Kaspersky Lab has detected a new version of the ‘malicious blackmailer’ Gpcode - Virus.Win32.Gpcode.ak.
The new Gpcode variant encrypts files with extensions DOC, TXT, PDF, XLS, JPG, PNG, CPP, H etc. on hard drives using an RSA algorithm with a 1024-bit key.
After encrypting files, the virus leaves a text file in the folder next to the encrypted files with following message:
Your files are encrypted with RSA-1024 algorithm.
To recovery your files you need to buy our decryptor.
To buy decrypting tool contact us at: ********@yahoo.com
Currently, we detect the new variant, but we are unable to crack the 1024-bit key. Our analysts are continuing to work on both the key and the virus to resolve this issue.
Kaspersky Lab recommends that all Internet users enable maximum protection from malicious code and network attacks on their computers, refrain from executing suspicious programs received from untrustworthy sources and back up any important information on their computers.
Detection of Virus.Win32.Gpcode.ak was added to Kaspersky Anti-Virus signature databases yesterday, on June 4th, at 15:39 GMT. Please make sure to update if you haven’t already.
If you have fallen victim to Gpcode.ak, try to contact us using another computer connected to the Internet. DO NOT RESTART or POWER DOWN the potentially infected machine. Contact us by email stopgpcode@kaspersky.com and tell us the exact date and time of infection, as well everything you did on the computer in the 5 minutes before the machine was infected: which programs you have executed, which websites you have visited, etc. We'll try and help...
Email-Worm.Win32.Warezov.nf
Kaspersky Lab has detected mass mailings of a new variant of Warezov, Email-Worm.Win32.Warezov.nf. At 8.00 Moscow Standard Time, 19 April 2007, 70-85% of the malicious content in mail traffic consisted of various forms of a new modification of Warezov - the Warezov.nf worm.
A few hours before this point, there was a noticeable increase in mail traffic of an earlier modification of Warezov - Warezov.do which featured in the October 2006 Top 20.
If you are using Kaspersky Anti-Virus 6.0 or Kaspersky Internet Security 6.0 with Proactive Protection turned on, new variants will be detected without the need to update your antivirus databases.
A full description of Email-Worm.Win32.Warezov.nf is now available in the Virus Encyclopaedia.
Email-Worm.Win32.Warezov.mx
A new version of Warezov, Email-Worm.Win32.Warezov.mx has been mass-mailed.
The worm spreads as an attachment to infected emails. Once launched, it may terminate antivirus and firewall programs and download other malware.
An urgent update to antivirus databases has been released.
If you are using Kaspersky Anti-Virus/ Kaspersky Internet Security 6.0, enable Proactive Protection, and new variants will be detected without the need to update antivirus databases.

Shopping Basket

Your cart is empty

eLibrary Archive

Who's Online

We have 16 guests online