New DoS attack underway?

Posted:
in General Discussion edited January 2014
I think we are in the midst of something brewing. I'm being severely bombarded with that "run this Windows patch" email across various DSL providers. I really mean "bombarded", as I have never seen this level of frequency in prior times.

Comments

  • Reply 1 of 5
    Yeah, PacBell keeps sending me messages like that, but not very many(I think they get filtered out as junk).
  • Reply 2 of 5
    mcqmcq Posts: 1,543member
    Quote:

    Originally posted by Randycat99

    I think we are in the midst of something brewing. I'm being severely bombarded with that "run this Windows patch" email across various DSL providers. I really mean "bombarded", as I have never seen this level of frequency in prior times.



    Well, yeah there's a virus running around right now, here's a link to info from News.com (heh everything I link to is from here)



    New virus preys on old IE flaw:

    http://news.com.com/2100-7349_3-5078696.html
  • Reply 3 of 5
    Downloading mail was another chore this morning... Accessing AI, MSNBC, Cnet, and CNN have been hampered from their affiliated content bogging down the loading of the pages too.



    This is an interesting article too...



    " The bigger worry is the slow-motion response of the federal government to attach the same seriousness to computer attacks that it does to terrorism."
  • Reply 4 of 5
    Get this- Earthlink emails me this morning to tell me that my 10 MB email account is filled (because of these damn .exe files, no less), and I cannot receive any other mail until I delete them. No problem. I can delete them. However, the email goes on to make a pitch to buy and use their Spaminator software. WTF? Maybe somebody smart over there could just find a way to block all these .exe files flying around?! Afterall, there is no legitimate purpose for emailing exposed .exe files, is there? That's like putting up a neon sign saying, "I'm a virus!"
  • Reply 5 of 5
    shetlineshetline Posts: 4,695member
    I'm up to FIFTY rules now on my server-side mail filter, trying to stem the Swen tide:

    Quote:

    If Subject contains Last Patch then move to Trash

    If Subject contains Last Internet Patch then move to Trash

    If Subject contains Critical Update then move to Trash

    If Subject contains Last Pack then move to Trash

    If Subject contains Security Update then move to Trash

    If Subject contains Security Pack then move to Trash

    If Subject contains Internet Upgrade then move to Trash

    If Subject contains Critical Patch then move to Trash

    If Subject contains Critical Upgrade then move to Trash

    If Subject contains network update then move to Trash

    If Subject contains failure notice then move to INBOX

    If Subject contains Bug Notice then move to Trash

    If Subject contains Network Update then move to Trash

    If Subject contains Abort Notice then move to Trash

    If Subject contains abort report then move to Trash

    If Subject contains New Upgrade then move to Trash

    If Subject contains Bug Announcement then move to Trash

    If Subject contains Bug Letter then move to Trash

    If Subject contains Network Patch then move to Trash

    If From contains Microsoft Corporation then move to Trash

    If From contains MS Corporation then move to Trash

    If From contains MS Program then move to Trash

    If From contains Security Division then move to Trash

    If From contains Security Support then move to Trash

    If From contains Security Sectio then move to Trash

    If From contains Message Delivery System then move to Trash

    If From contains delivery system then move to Trash

    If From contains Network Mail Service then move to Trash

    If From contains Microsoft Public then move to Trash

    If From contains MS Net then move to Trash

    If From contains Microsoft Customer then move to Trash

    If From contains MS Customer then move to Trash

    If From contains Storage System then move to Trash

    If From contains net service then move to Trash

    If From contains Network Mail System then move to Trash

    If Subject contains microsoft update then move to Trash

    If Subject contains ms update then move to Trash

    If Subject contains microsoft pack then move to Trash

    If Subject contains ms pack then move to Trash

    If Subject contains Critical Pack then move to Trash

    If Subject contains Net Pack then move to Trash

    If Subject contains Announcement then move to Junk

    If Subject contains bug report then move to Junk

    If Subject contains abort then move to Junk

    If Subject contains network pack then move to Trash

    If From contains ms public then move to Trash

    If From contains microsoft network then move to Trash

    If Subject contains failure report then move to Trash

    If From contains Delivery Service then move to Trash

    If From contains Net Mail then move to Trash



    None of this would be needed if I had a simple attachment-based mail filter.



    It's very simple. I'll NEVER want an .exe file. Ever. Same goes for .scr, .pif, .bat, .com... all of the executable Windows file types virus spammers use. I want my mail server to toss mail with such attachments into the trash immediately, not let it use up any disk space, not let it use up any bandwidth being sent to me for my mail client to deal with.



    If I really, really ever need someone to send me a file like that, I'll just ask them to zip, stuff, or otherwise archive the file into some non-executable format.
Sign In or Register to comment.