September 6, 2001
Information-technology Promotion Agency
Security Center (IPA/ISEC)
Computer Virus Incident Reports [summary]
2809 reports were submitted, which is the worst number!
Over 1200 reports of W32/Sircam in a month!
This is a summary of Computer Virus Incident Reports of August 2001 compiled by IPA: Information-technology Promotion Agency (President: Shigeo Muraoka). 2809 reports were submitted in August. Among those, there were 592 reports of actual infection. They are the worst number as to be reported in a month ever since. FYI, the worst number of reports until July 2001 was 2778 submitted in December 2000 and 546 of actual infection reported in November 2000.We got 1738 reports included 344 reports of actual infection in July 2001.
Rage of W32/Sircam!! 1257 reports were submitted in this month!!
The number of reports for W32/Sircam, which was 1257, is the largest as to be reported for one kind of virus in a month since we got 1008 reports for W32/MTX in December 2000.The number of reports of actual infection was 281(22.3%). It shows that the virus exercises an overwhelming influence. (See reference material for the detail of this virus.)
Feature of
W32/Sircam
This virus will send many emails to the same address at short time intervals so it seems to be spam mails
(UBE(unsolicited bulk e-mails)).
The size of virus part in the attachment file is already 134KB so it will take some time to send.
The name of the subject and the attachment file does exist so it doesn't seem to be dangerous to open it without caution and then will cause the second infection.
PS,this is the case of using image of E-mail software under
Japanese.
The way to block virus mails
Use provider's service of the "block sender" or the "virus check".
Set up "New mail rule " at Outlook Express properly and delete virus mails from server.
(It is possible to do detailed set up so please make sure.)
Warning for this month: Set up security function properly
――― To protect damage caused by harmful script―――
However you use anti-virus software properly as countermeasures, it is still possible to get damage such as unable to use PC after see some Web site if there is security hole at browser. The reason for the cause is that the harmful script which is embedded in Web site is automatically executed. There were many damages reported in August, which were caused after seeing auction site. To protect damage caused by these harmful script, it is necessary to set up security function at browser properly. (Refer to figure 1)
Figure 1: A screen for setting up security function at Internet Explorer (Tool/Internet option).
Example as to disable script's execution is as follows:
PS,this is the case of using image of E-mail software under
Japanese.
Reference: Countermeasures for the risks in terms of Web surfing and using email etc. for individual users.
Besides, applying security patch (program modification) will secure you to see Web sites more safely. Web site on security information from Microsoft is shown at figure 2.Those who use either Windows or Internet Explorer might want to refer this site regularly.
News: A seminar on information and security will be held
This is free seminar called Information and Security Seminar where countermeasures on anti-virus and unlawful access will be discussing. It will be held under the joint auspices of Ministry of Economy, Trade and Industry at 13 places across the whole country between 24th of October and 29th of November.
In this year, we will provide the "course for end users" and the "course for managers" at the same meeting place
at a.m. and p.m. respectively on the same day.
Please refer to the exhibit or Web site below on details such as venue, schedule and application.
About "Information and Security Seminar”
IPA Security Center (IPA/ISEC)
(ISEC: Information technology SEcurity Center)
TEL:03-5978-7508 FAX:03-5978-7518 E-mail:isec-info@ipa.go.jp
Computer Virus Incident Reports for
August,
2001(full report)
Copyright © 2001 Information-technology Promotion Agency, Japan. All rights reserved.
