Mauro and others,

I don't think you got it from the PSN-L list since attachments are block
from being sent out. If you think it is from the PSN-L list please forward
the email message to me directly AND please include the headers. The new
virus is called W32/BadTrans. I just received an email message from Lisa
Koenig who maintains the VOLCANO(at)asu.edu list regarding this virus/worm.
I'm including it in this message. I personally have been getting a lot of
email messages with this virus in it. I must be in a lot of please address
book... I now use Norton AntiVirus software that seems to work very well at
not allowing these type of virus from infecting my system.

-Larry Cochrane
Redwood City, PSN

----- Original Message -----
From: "Mauro Mariotti" 
To: 
Sent: Thursday, November 29, 2001 10:51 AM
Subject: Re: WinSDR beta testers needed


> Hi all,
> i just received a mail from PSN mailing list with object
> about the WinSDR, this mail contains a virus.
> I'll try to identify it but it seems to be similar to one
> affected many computers here in Italy.
> I'll keep you informed
> the sender was
>
> _morris@.......
>
> but surely he is not responsible it is a virus
> that email itself with an object theme that often has sense for
> the receiver.

Hello volcano list subscribers,

Earlier this week I received multiple messages with attachments that
contained an e-mail virus (Badtrans).  These messages were sent from the
accounts of a few list subscribers who had volcano e-mail from me in their
mailboxes, which made my address a target for the propagating virus.
Fortunately, neither I nor the volcano list was affected by these attacks.

In case you haven't heard about the Badtrans virus, you can get more
information at http://vil.mcafee.com/dispVirus.asp?virus_k=99069& or at
http://www.cert.org/incident_notes/IN-2001-14.html.  I thought it also
would be useful to send out a general reminder about e-mail security, so
here are a couple of suggestions to help prevent the spread of e-mail
viruses:

1.  Avoid opening e-mail attachments, regardless of the sender's name,
without prior knowledge of the origin of the file or a valid digital
signature, or without first saving the attachment and checking it with
anti-virus software.  You should be especially careful if the attachment is
an executable program (.exe extension).  Note that some viruses may be
labeled with other file extensions, but contain executable files.

2.  Users of Microsoft Outlook or Outlook Express may be particularly
vulnerable to virus attacks, due to the tight integration of this software
with the Windows operating system. For example, the Badtrans virus is
capable of infecting your computer even if you do not open the virus
attachment, if you read the e-mail message in the preview mode of Outlook.
If you do use Outlook or Outlook Express as your e-mail program, visit the
Microsoft web site regularly to download and install new security patches.

If you'd like more information about viruses and computer security, there
are some useful websites, such as CERT (http://www.cert.org) and McAfee
(http://www.mcafee.com/).

By the way, if you send a message for distribution to the volcano list,
please send it as plain text and not as an attachment if possible.

Thanks for your attention,

Lisa Koenig



__________________________________________________________

Public Seismic Network Mailing List (PSN-L)