An Internet worm called “sobig” and variants, called “lovesan” and “nachi” are making the rounds at USM, and the latest versions of Microsoft Windows are vulnerable , according to Carl Helms, Director of Software Services.
“Virus software can’t protect you,” Helms explained. The worm enters a computer through communications channels, called ports, that are left open by default in Microsoft Windows NT and newer operating systems that are based on it, including Windows 2000 and Windows XP. Windows 95 and 98 are not susceptible to this particular attack. A similar weakness has been discovered in the latest version of Microsoft Office. Helms said both vulnerabilities can be fixed by applying patches from Microsoft’s automated update website at http://www.windowsupdate.com. The above-mentioned worms do not appear to be harmful, Helms said, but the same security hole could be exploited by much more malicious hackers to destroy data or share personal information, so the upgrades are highly recommended to anyone running this software.
Meanwhile, viruses continue to circulate as attachments in deceptively labeled emails . “The ‘to’ field is often changed to a person’s name you may know,” Helms explained. The latest batch of email viruses are using the acronym WTC to draw unwitting clicks. There is also an email claiming to be a Microsoft update patch, usually named something like “Install897.exe.” Microsoft never distributes updates to its software via email.
Helms urges students to delete any email with attachments, even if they appear to come from a friend, unless you have made previous plans with one another to send email attachments.
John Bronson can be reached at [email protected]