Page 1 of 1

[Important]Are you a CableLynx.com Customer

Posted: 2003-08-29 01:48pm
by Rob Wilson
I don't know if Spyda Has posted anything on this yet, but if you are connected to the Web and you have both Spyda or myself in your Address book, then the chances are you could be infected with the Sobig.F virus. Mark recieved an infected mail purportedly from me, but the headers trace back to Cablelynx.com.

Sobig.f works by looking through the victims address book and choosing an addres at random, it hten uses that address as the From: and proceeds to mail everyone else in your Address book with copies of the virus.

As the Infected Mail had my E-mail Addy in the From: field and was sent to Mark, then whoever has a Cablelynx.com connection and both of us in their Address book is most likely infected.

If you're not sure what to do, then go to the Cablelynx homepage and follow the link at the top of the page on Security concerns and virus's. The thread you want to check is Sobig.f virus. Follow the instructions there and then for the love of Sex get an Anti-Virus programme for your computer and keep it up to date.

Thank you.
Anyone seeing this (and after checking no one else has started a similar thread) can you post a similar waring on ASVS as that's another possible source of someone having both our addresses.

Posted: 2003-08-29 01:55pm
by Phil Skayhan
Well, that explains my inbox.

I'll repost this to ASVS.

Posted: 2003-08-29 01:55pm
by Ghost Rider
Danke.

Well running the tool...just in case.

Posted: 2003-08-29 02:08pm
by Zoink
You should forward the header info to Cablelynx.com, I'm sure they'll tell the user.

My former boss' laptop was infected, it sent an infected email to a co-worker, the from field was obviously faked, but the sender's computer name was still in the header (the windows name), so I knew who sent it right away.... if that is of any help.

Posted: 2003-08-29 08:10pm
by Rob Wilson
Zoink wrote:You should forward the header info to Cablelynx.com, I'm sure they'll tell the user.

My former boss' laptop was infected, it sent an infected email to a co-worker, the from field was obviously faked, but the sender's computer name was still in the header (the windows name), so I knew who sent it right away.... if that is of any help.
Already thought of that, but the header has only generic Server info not user specific Ip info. So this is the only way I could think to get the message out.

If anyone should get a Sobig.F file purportedly from me, then check the headers and see if there's anything specific in there besides server info.