[Posted by Mace
, 9.19.2003 @ 10:31:AM]
There is a new virus that takes advantage of a recent problem discovered with certain version of Microsoft Windows. More information can be found here: http://firstname.lastname@example.org . It dupes users into thinking they are installing a security update, when in fact it isn't. See screenshot: http://email@example.com. If you haven't updated your system, please do so at http://www.windowsupdate.com.
If you opened the attachment, it attempts to disable various anti-virus programs (like Norton Anti-Virus) as well as various firewalls (like ZoneAlarm). It will try to intercept your email username, password, and mail server settings, thus using your ISP's mail server to spread itself. It will attempt to send itself to everyone on your address book through email, as well as attempt to spread through KaZaA, shared directories, IRC, and newsgroups. It will modify your registry, add files to your computer. In short, your computer and possibly your ISP access will be thoroughly screwed by the time the worm is done installing itself on your computer, so it'll be best if you avoid getting infected so you don't have to deal with the resulting mess.
As always, don't open email attachments from people you don't know, even if it claims to be from Microsoft.