Kama Sutra Worm Hits Softly 175
An anonymous reader writes "Despite warnings of the danger posed by the Kama Sutra worm, ZDNet is reporting that things haven't been nearly as bad as expected." From the article: "There have been 'no reports of any (Kama Sutra) detonations so far. Also, the virus seems to be dropping in e-mail prevalence. It was down to second place yesterday, according to our monitoring stations, and slid again into third place today,' Paul Ducklin, head of technology at Sophos Asia-Pacific, told ZDNet Australia. The worm's ranking was overtaken by MyDoom and Netsky variants, which have been around for a number of years. "
What? I don't understand.... (Score:5, Funny)
Re:What? I don't understand.... (Score:3, Insightful)
Re:What? I don't understand.... (Score:2)
Yeah, and the assocation Kama Sutra == faboulus sex in various positions fit for those training gymnastics since age five.
Re:What? I don't understand.... (Score:1)
* At least 18 - 5 = 13 years of training required by U.S. law.
Re:What? I don't understand.... (Score:2, Informative)
* At least 18 - 5 = 13 years of training required by U.S. law.
take a look a this: http://www.avert.org/aofconsent.htm [avert.org]
the age of consent in the US differs from state to state, 18 in (quick count) only 13 states (most 16, 17)
and the US State with the lowest AoC goes to... (drumroll)
South Carolina @ 14!
They should adopt "Lowest age of consent law in the union!" as their new state motto and put it on license plates.
Re:What? I don't understand.... (Score:3, Funny)
The great states of Iowa an Misouri also have 14, and where there are two different numbers for the same state it means
the law within that country or state varies according to region or circumstances.
So, I'm guessing 14 is legal if you are married (preferrably to a close relative),
Re:What? I don't understand.... (Score:2)
It's 18 otherwise. Made for many many "Do you have a note from your parents?" jokes when I was in high school.
Re:What? I don't understand.... (Score:2)
Re:What? I don't understand.... (Score:2, Funny)
They should adopt "Lowest age of consent law in the union!" as their new state motto and put it on license plates.
Re:What? I don't understand.... (Score:2)
People ate it up though. I received no less then three articles from my boss on this "impending doom".
But the fact that it depended on user stupidity and not a hole or exploit had me calm over this. Not to say that some of our users aren't a bit clueless, it's just that they value their jobs enough to avoid emails that offer them "free nekkid pics".
Re:What? I don't understand.... (Score:5, Insightful)
Re:What? I don't understand.... (Score:5, Insightful)
Re:What? I don't understand.... (Score:1)
Re:What? I don't understand.... (Score:4, Insightful)
Re:What? I don't understand.... (Score:2)
Any decent virus scanner worth its salt should pick up email viruses anyway.
A bad but apt analogy, try this one one for size. (Score:2)
Condoms in a kama sutra story, nice but not quite right. Condoms have been shown to be effective. Antivirus programs have yet to protect anyone from the yearly M$ spread disease. OpenBSD might be considered a good condom, GNU/Linux dist
Re:A bad but apt analogy, try this one one for siz (Score:2)
Given your interest is in reducing S/N ratio here, I know your thanks are as sincere as the rest of your posts.
Re:What? I don't understand.... (Score:2, Insightful)
Re:What? I don't understand.... (Score:2)
Re:What? I don't understand.... (Score:4, Insightful)
If someone warns me that I'm about to get hit by a car, and I move and avoid being hit, I wouldn't say that there was nothing to be worried about.
Re:What? I don't understand.... (Score:1)
Re:What? I don't understand.... (Score:2)
It's a puny list which doesn't surprise me as most of the failure cases I know of are covered by confidentiality agreements.
Three cheers for self-defeating prohecies (http://en.wikipedia.org/wiki/Self-defeating_proph ecy [wikipedia.org]) be it viruses or anything else bad
Re:What? I don't understand.... (Score:2)
More prepared? better prepared? (Score:5, Insightful)
Overreaction? Maybe, but definitly better than underreaction.
Re:What? I don't understand.... (Score:1)
Tom jones: Sex Bomb (Score:1)
I'm your main target, come and help me ignite.
Make me explode although you know the route to go to sex me slow.
No don't get me wrong ain't gonna do you no harm no,
This bomb's made for lovin' and you can't shoot it far
Sexbomb sexbomb you're a sexbomb
You can give it to me when I need to come along
Sexbomb sexbomb you're my sexbomb
And baby you can turn me on turn me on darlin'
Sexbomb sexbomb you're my sexbomb sexbomb
You can give it to me when I need to come along
Sexbomb sexbo
Re:What? I don't understand.... (Score:2)
Also see here [repubblica.it] (if you speak Italian)
Seems like having to have 10,000 computers shut down for a day is a big deal... We won't hear about the real impact until next week, I'm guessing.
Uh oh... (Score:4, Funny)
Nothing for you to see here. Please move along.
the first few times I tried to view this article. Are we sure Slashdot isn't infected?
Re:Uh oh... (Score:2)
> Nothing for you to see here. Please move along.
> the first few times I tried to view this article. Are we sure Slashdot isn't infected?
Naw, if Slashdot had been hit, it would have said DATA Error [47 0F 94 93 F4 K5]. Please move along.
Man, those Kuro5hin folks, always trying to get the last byte in edgewise...
Re:If so, the story will be posted numerous times. (Score:1)
Old Threats (Score:5, Insightful)
I, for one, would favor a slightly smarter Internet that simply filtered out known threats, stopping any further spread once they're identified. The fact that attacks continue to run years after they're first known is just plain stupid!
Re:Old Threats (Score:5, Funny)
Re:Old Threats (Score:5, Funny)
Re:Old Threats (Score:1)
Re:Old Threats (Score:2)
Yeah, right. There's a reason there's a cliche about "... along will come a better fool" - because it's true.
We have so many warnings and safety bubbles around us nowadays we're losing the ability to protect ourselves from our surroundings. We're creating a society of clueless, helpless retards.
We start our computers and watch as fifteen protection mechanisms automatical
Re:Old Threats (Score:2)
I think you've missed the point. Any 'foolproof design' has been a pipe-dream since humans have been creating ... anything. An OS wth a foolproof design has been a pipe dream since computers were invented.
But hey, if Microsoft can finally accomplish this, hey, all the power to them. Excuse me while I split my sides now.
Re:Old Threats (Score:2)
So let's see if I understand; you didn't understand anything I said in my initial response, and you're still arguing that the solution to all of our computer related problems is technical (and Microsoft seems to be at the forefront from what I gather of your arguments), yet you continue to argue the same point over and over.
If
Re: (Score:2)
Re: (Score:2)
Re:Old Threats (Score:2)
Re:Old Threats (Score:1)
In this case, it sounds like there is. Supposedly, this virus spreads by the user telling his email client to execute an attachment. Not just "opening" it (viewing hostile content should always be safe to do (barring accidental execution (e.g. an overflow bug in libpng)), but deliberate execution.
The patch is to remove that capability from the email client. Or if people really want to use their email clients as program loaders (wtf?!), then at least it should load
Or a smarter Microsoft (Score:3, Insightful)
How many here, have had a win-sysadmin, send out messages "please don't open mails with the subjest 'OpenMePlease', it will possibly cause bad things."
Sounds like a serious bug with the mail program. The mail program should not by default run attached programs or open attatche documents that trigger macros.
Re:Or a smarter Microsoft (Score:2)
Re:Or a smarter Microsoft (Score:2)
I think there's confusion over the meaning of "open." "Open" should not mean "execute as native code with the same privileges as the user."
Fine, let them open it. But if the attachment is a media type that is unrecognized, then it should "open" it in a hex editor or something. Boring, but appropriate, since native code should not be considered a recognized media type.
Only open safe files (Score:2)
A text file is safe, so that can be opened if clicked, right.
An html file is safe, assuming the browser is safe.
A word document is safe, unless it has macros.
Probably, when launching word by association, a special flag should be passed. 'word -nomacros'.
An excel document is safe, unless it has macros.
Probably, when launching word by association, a special flag should be passed. 'excel -nomacros'.
An EXE/BAT file is not safe....
Re:Or a smarter Microsoft (Score:2)
Re:Or a smarter Microsoft (Score:2)
When I've had Exchange admins send me things like that before, I usually point out how easy it is to set up Spam Assassin on a Linux box. Problem solved!
Re:Or a smarter Microsoft (Score:2)
Try out spamd [openbsd.org] that is much likely to catch e-mails from infected PCs than SpamAssassin.
Media Hype (Score:1, Funny)
Racy Title (Score:5, Funny)
Re:Racy Title (Score:4, Funny)
The media loves it (Score:3, Insightful)
Re:The media loves it (Score:3, Interesting)
Re:The media loves it (Score:5, Funny)
+1 to my dad for knowing that the answering machine did have a computer as a component
-100 for thinking that it was susceptible to a virus dialing it up and infecting it
Re:The media loves it (Score:2)
That's what they said about email only a few years back...
Re:The media loves it (Score:2)
It is a computer, though, so shouldn't it have bugs?
The big question remains (Score:5, Insightful)
Most of the users I support would rather reconstruct their documents than admit they clicked on a "free pr0n" e-mail. Wonder how accurate this news really is.
Re:The big question remains (Score:1)
Of course, I don't think users who have had their files dumped have necessarily become aware of the issue yet, or as you say, maybe they haven't wanted to admit it.
Re:The big question remains (Score:2)
So far though it seems to have all of the devastation of the y2k disaster.
Re:The big question remains (Score:2)
B) no one infected with this worm is willing to admit it?
Do we care which? As long as they either don't do it anymore, or are smart enough to understand it when they do something wrong I am happy.
Re:The big question remains (Score:3, Informative)
--
From the weblog:
So far today we haven't received any significant Nyxem damage reports.
Vast majority of the machines infected by Nyxem are home computers. Nothing will happen on them until people get home from work and boot up their machines. Half an hour later the damage starts. The user won't realise what's going on until an hour or two later, when it's already late Friday night
More likely... (Score:2)
Re:More likely... (Score:2)
Killing me softly (Score:3, Funny)
I felt he found my letters and read each one out loud.
I prayed that he would finish but he just kept right on
Strumming my pain with his fingers,
Singing my life with his words,
Killing me softly with his song,
Killing me softly with his song,
Telling my whole life with his words,
Killing me softly with his song...
That's what came to mind when i read the title "Kama Sutra Worm Hits Softly." It's not my fault though, my mother subjected me to years of 'light' music on my way to school.
Anyways, I'm not surprised the media took this one and ran with it. When was the last time they had a 'major' malicious virus to talk about?
Re:Killing me softly (Score:4, Funny)
Years of 80s music made me think that this was the Karma Chameleon worm. Seems to come and go. Whoa-o-o.
duh, this is the foreplay (Score:5, Funny)
IT'S NOT A WORM! (Score:5, Informative)
Surely Slashdot knows the difference? A virus/trojan relies on user stupidity. A worm relies on software insecurity.
Re:IT'S NOT A WORM! (Score:1, Flamebait)
Re:IT'S NOT A WORM! (Score:2)
but ya, it also spreads via windows shares (not just emails), so yes, it is a worm.
Re:IT'S NOT A WORM! (Score:2)
Re:IT'S NOT A WORM! (Score:5, Informative)
http://en.wikipedia.org/wiki/Computer_worm [wikipedia.org]
A computer worm is a self-replicating computer program, similar to a computer virus. A virus attaches itself to, and becomes part of, another executable program; however, a worm is self-contained and does not need to be part of another program to propagate itself....The main difference between a computer virus and a worm is that a virus can not propagate by itself whereas worms can. A worm uses a network to send copies of itself to other systems and it does so without any intervention
This thing (from what little I read) emails itself around when it can... which would qualify it as a worm.
I'm a little fuzzy on the intervention part... the user has to to the initial activation, which could be intervention, but then again you have to do the initial activation with viruses, so I don't think that qualifies.
This thing doesn't seem to make itself part of another executable persé, so it wouldn't quite qualify as a virus.
Maybe I read my definitions wrong...
In Vitro Virus (was:IT'S NOT A WORM!) (Score:2)
This "email worm" is more like a virus than a worm. It doesn't exploit an automatic execution hole in a popular email package, and thus it requires a user to execute the malware for it upon receipt of the email. This is social engineering, an
Re:IT'S NOT A WORM! (Score:2)
A virus and a worm rely on software insecurity. A worm is a virus but spreads through emails.
Its the trojan that relies on user stupidity. Spyware too. Unless it comes within a reputable software with no options to not select it.
Re:IT'S NOT A WORM! (Score:3, Funny)
Re:IT'S NOT A WORM! (Score:2)
Comparisons to other worms are misleading (Score:5, Insightful)
This information distorts the issue. Kama Sutra carries an extremely destructive payload, deleting a user's local data and data on attached network drives (and, worse, the antivirus software on the networked computers can't prevent these deletions). This cannot be directly compared to MyDoom or NetSky, which merely clog networks, install backdoors (that are not usually used for anything nearly as destructive), and turn computers into spam and DoS zombies.
The above statement is like saying that rainstorms have overtaken tornados in prevalence. That doesn't matter, because tornados do much, much more damage than rainstorms do.
Re:Comparisons to other worms are misleading (Score:5, Informative)
http://www.flooddamagedata.org/data/national33140
http://sciencepolicy.colorado.edu/sourcebook/torn
Re:Comparisons to other worms are misleading (Score:2)
Okay, stupid post, but what did you expect from me and Slashdot?
Re:Comparisons to other worms are misleading (Score:2)
While +5 is overrated, the point I was trying to make is that the OP's analogy was doing a poor job of making his point for him. I was trying to make it clear that while the dramatic and spectacular issues may make news, it's the ordinary, persistant problems that really cause more damage.
While their effects aren't as terrifying for those affected, there is little doubt that MyDoom and Netsky are continuing to hav
Re:Comparisons to other worms are misleading (Score:2)
I'll take 10 users getting their documents destroyed over one DoS zombie any day. The former only has an impact on me if I'm an idiot, the latter becomes a problem when other people are idiots.
Re:Comparisons to other worms are misleading (Score:2)
That's easy for people like us to say, but the reality is that the documents and data of a person who lacks a sufficient understanding of computer security are not automatically less important than our data or documents.
Or, by way of analogy, the life of a person who didn't think to buy a carbon monoxide detector for
Re:Comparisons to other worms are misleading (Score:2)
I don't disagree. All I'm saying is that a virus that harms the person who gets infected through his own negligence is better than a virus that harms countless others through a person's negligence. This is especially true with viruses that go out of their way to have no concequence on the 'victim' such that the person won't know to t
Delayed reaction (Score:5, Insightful)
but but.. (Score:2)
http://webstats.web.rcn.net/cgi-bin/Count.cgi?df=
Soft ehh, (Score:2, Funny)
Misprint in the virus email subject (Score:4, Funny)
Re:Misprint in the virus email subject (Score:1)
It's bleedin' obvious (Score:1)
Well it's pretty obvious. Most places that allow Joe Public to post or report news require registration. The Kama Sutra deletes DOC files, where Joe Public keeps all of his passwords. Now they can't access e-mail, post stories, or read the NY Times to even find out about the virus. ;)
But really, when the average user experiences problems on a PC, they're so bewildered by PCs as it is that they figure it's their fault and call upon the ne
Re:It's bleedin' obvious (Score:1)
Re:It's bleedin' obvious (Score:2)
Yeah But... (Score:5, Funny)
"Despite"? (Score:2, Informative)
How can I ever show my face at work again? (Score:1)
Now, it looks like I'll have to hang my head in shame on Monday. Curse you media, curse you!
Overhyped? (Score:2)
Yup, that's the whole thing. Sure glad that the folks at Ziff
Dang it! (Score:3, Funny)
Now what am I going to do with 500,000 T-shirts, stickers, coffee mugs, mouse pads, and other miscellaneous paraphernalia printed with the slogan "I got pwned by Kama Sutra!"
Failed Marketing (Score:2)
"Oh Crap"
Where have all the virus makers gone anyway. We must either start funding script kiddies, or get into the antispam business.
Kama Sutrat hits softly... (Score:3, Funny)
I jest!!
Kama Sutra Worm Hits Softly (Score:2, Funny)
Oh THAT one might have hit softly... (Score:2, Funny)
crying wolf? (Score:2, Insightful)
Maybe this was the reaction intended by the author of the worm - to prepare the real next BIG attack when no one pays attention to warnings anymore.