Clinton Worm is No Anna

Share it on Twitter  
Share it on Facebook  
Share it on Google+
Share it on Linked in  
Maybe it's a sign that anti-virus tools and techniques are becoming more effective, perhaps it was just a poorly executed virus attack, or maybe Bill Clinton is just no Anna Kournikova. Whatever the reason, two versions of the MyLife.B virus that hit last Friday appear to have left few scars.

Both forms of the virus known to be in the wild were meant to attack Microsoft Outlook mail systems and automatically mail themselves to users in the address book. One entices recipients to open an attachment that purports to be a screensaver with a caricature of former President Bill Clinton playing the saxophone. The other has a photograph of a girl holding a flower.

In each case, the payload is potentially destructive, says Chris Wraight, technology consultant with anti-virus software vendor Sophos. "Every day at 8 a.m. it tries to delete the contents of your C, D, E and F drives," he says.

But both viruses contain flaws that may have proved fatal. The Clinton version contains a line of text, meant to appear to have been added by an anti-virus program, that reads, "No Viruse(sic) Found." The word "bye" is also mispelled as "buy." The other version contains a flaw that renders it unable to delete files.

Overall, the viruses were "not very serious at all," Wraight says, nothing Sophos received only a handful of support calls. He says the typos played a large role in alerting users not to execute the attachments.

The fact that the viruses originated in the Far East also helped. For example, Sophos' Australia location picked them up and was able to get an update out in the U.S. before the business day began Friday.

Submit a Comment

Loading Comments...