Security Incidents mailing list archives

RE: Novarg/Mydoom coming in through web pages?

From: "Henderson, Dennis K." <Dennis.Henderson () umb com>
Date: Wed, 28 Jan 2004 10:47:08 -0600

It seems possible that people with yahoo and hotmail accounts could trip
this just like any other mail client.

Dennis

-----Original Message-----
From: Jared Mittleman [mailto:jared () jmittleman com] 
Sent: Wednesday, January 28, 2004 8:09 AM
To: incidents () securityfocus com
Subject: Novarg/Mydoom coming in through web pages?

I came into the office this morning to a rash of Novarg intercepts this
morning. One of them cought my attention though because it was on a
machine with out email access and was discovered in the Cache of Mozilla
by a nightly scan, not the realtime protection. If it helps we use
Symantec Antivirus Corporate Edition.

Anybody else seen anything like this? I know that it has P2P propogation
capabilities but could this be migrating into coming via web sites?

--Jared Mittleman

------------------------------------------------------------------------
---
------------------------------------------------------------------------
----

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Novarg/Mydoom coming in through web pages? Jared Mittleman (Jan 28)
- <Possible follow-ups>
- RE: Novarg/Mydoom coming in through web pages? Henderson, Dennis K. (Jan 28)