HOME >> IT Security >> Computer Virus Incident Reports
Computer Virus Incident Reports [Summary]
September 5, 2002
Information-technology Promotion Agency
Security Center (IPA/ISEC)
W32/Klez Virus has been over 1,000 reports for recent 5 months !!
==The worst history==
This is a summary of Computer Virus Incident Reports for August 2002 compiled by IPA: Information-technology Promotion Agency.
In August, 1756 reports were submitted to IPA. (1781 reports in July). Actual damage rate was 4.5% (9.7% in July).
W32/Klez virus, assuming sender's address is still spreading widely !!
W32/Klez virus reached 1062 reports. Since April 2002, it has been over 1000 reports every month and epidemic in prolonged stage.
There are three main reasons that it spreads widely.
- “It comes from sender's address existing in reality or address of name with no problem.”
- “It misuses the security hole and computer can be infected by just opening email.”
- “It misuses sender's address by using address from address book. Thus it is difficult to specify the real sender (who are infected)”
Especially, because people cannot contact sender (who is infected), they continue to send the virus email without realization of infection.
(Reference)
- Information on W32/Klez virus
http://www.ipa.go.jp/security/topics/newvirus/klez.html (Japanese)
Warning for this month: Without checking, one cannot go through internet safely!!
===== To you who think virus damage is not for your own =====
Everyone can encounter virus unless you use internet. If you think virus infection for other's problem and without prevention, it is easy to get infection. Also, you may not realize infection itself.
W32/Klez virus is spreading widely. Please follow the below steps and complete prevention in advance.
Step 1) Use special anti-virus tool for Klez (Charge-free)
Some anti-virus tools are offered according to virus type. Please check.
- W32.Klez anti-virus tool (Symantec)
http://www.symantec.com/region/jp/sarcj/data/w/
w32.klez.removal.tool.html (Japanese) - Worm_Klez infected machine's repair (Trend Micro)
http://www.trendmicro.co.jp/klez/tool.asp (Japanese)
Step 2) Check the virus
i) Checking the virus by online (Charge-free)
Go to an anti-virus vendor' sites, and check the current status by online.
- Virus Buster Online Scan (Trend Micro)
http://www.trendmicro.co.jp/hcall/scan.htm (Japanese) - Security Check (Symantec)
http://www.symantec.com/region/jp/securitycheck/index.html (Japanese)
ii) Virus check by anti-virus software (Charged)
Install it into the computer. It is a necessary item to prevent ongoing infection.
- List of main anti-virus vendors' web sites
http://www.ipa.go.jp/security/antivirus/vender.html (Japanese)
iii) Using the provider's virus check service
(Charge-free ~ Charged several hundred yens/ month)
By using the major providers' offering services above, virus via email will be checked automatically.
Step 3) Upload the new version of software (Charge-free)
Checking the security problem of software by the site below. If necessary, adjust modification program and dissolve security hole.
- “Windows Update” http://windowsupdate.microsoft.com/ (Microsoft)
(*)To change browser and email software to other company's product is also effective for security prevention. Please obtain information on security hole for applied product, either.
- “Security note” http://www.netscape.com./ja/security/ (Netscape)
- “Opera's Japanese site” http://jp.opera.com/ (Opera Software)
The above steps are valid to any virus, thus please use them.
Inquiry
IPA Security Center (IPA/ISEC)
(ISEC: Information technology SEcurity Center)
TEL: +81-3-5978-7508 FAX: +81-3-5978-7518
E-mail: 
Emergency call: +81-3-5978-7509
URL: http://www.ipa.go.jp/security/index-e.html