Mobile menu

Bugbear in a message from ProZ.com? (Staff: 'no')
Thread poster: Amy Duncan
Amy Duncan  Identity Verified
Brazil
Local time: 20:09
Portuguese to English
+ ...
Jun 16, 2003

I got an e-mail from ProZ today with the bugbear virus in the attachment. Fortunately, Norton caught it...but beware those of you whose anti-virus programs may not be up to date. This was a general message that was probably sent out to a lot of people.

Direct link Reply with quote
 

Henry Dotterer
Local time: 19:09
SITE FOUNDER
The message was forwarded, the address spoofed Jun 16, 2003

Bugbear infests Windows-based systems. Since ProZ.com runs Linux systems, and does not mail attachments, you must have received the virus from a ProZ.com user who is now infected. The "from" address--the ProZ.com address--was spoofed. That's what bugbear does; this is a common occurrence.

If you ever get an attachment in an email apparently from ProZ.com, don't open it. And yes, everyone should keep their virus protection up to date.


Direct link Reply with quote
 

Ralf Lemster  Identity Verified
Germany
Local time: 01:09
English to German
+ ...
More background Jun 16, 2003

For more details on how Bugbear and related worms (technically, Bugbear isn't a virus, but a mass-mailing worm, but that doesn't make it less nasty...), check out info pages posted by providers of antivirus software, e.g. by Symantec. Quoting from there:


Mass-mailing routine
When the mass-mailing routine runs, it does the following:

...

3. Uses its own SMTP engine to send itself to all the email addresses it finds. As part of the routine, the worm spoofs the From: address.


Best regards, Ralf


Direct link Reply with quote
 

Csaba Ban  Identity Verified
Hungary
Local time: 01:09
Member (2002)
English to Hungarian
+ ...
Also here Jun 19, 2003

I just received a KudoZ question (Eng-Hun, http://www.proz.com/kudoz/402989), and Norton noticed that the message was infected by BugBear.
Csaba


Direct link Reply with quote
 

Ralf Lemster  Identity Verified
Germany
Local time: 01:09
English to German
+ ...
Please read the background info Jun 19, 2003

Hi Csaba,
I just received a KudoZ question (Eng-Hun, http://www.proz.com/kudoz/402989), and Norton noticed that the message was infected by BugBear.

Today's KudoZ questions have question IDs around 461xxx - the notification you got is quite apparently an old one. As was pointed out numerous times already, current mass mailing worms use messages found on an infected system and combine them with a random choice of sender and recipient addresses.

Regards, Ralf


Direct link Reply with quote
 


To report site rules violations or get help, contact a site moderator:


You can also contact site staff by submitting a support request »

Bugbear in a message from ProZ.com? (Staff: 'no')

Advanced search






SDL MultiTerm 2017
Guarantee a unified, consistent and high-quality translation with terminology software by the industry leaders.

SDL MultiTerm 2017 allows translators to create one central location to store and manage multilingual terminology, and with SDL MultiTerm Extract 2017 you can automatically create term lists from your existing documentation to save time.

More info »
memoQ translator pro
Kilgray's memoQ is the world's fastest developing integrated localization & translation environment rendering you more productive and efficient.

With our advanced file filters, unlimited language and advanced file support, memoQ translator pro has been designed for translators and reviewers who work on their own, with other translators or in team-based translation projects.

More info »



All of ProZ.com
  • All of ProZ.com
  • Term search
  • Jobs