|
archives If you want an RSS feed try this 
Monday, November 03, 2003
AV companies, including Trend Micro and Kaspersky Labs are warning of a medium risk virus propogating in the wild. The so called MIMAIL virus appears too have a number of variants all of which affect Win-32/Outlook style mail clients.
ecommnet's practical experience is shown below with two tables; extracts of various live reports from a BorderWare MXtreme email firewall from a customer where the e-mail firewall is on evaluation.
Number of Virus Attacks |
| Virus Name | Num per Week |
| I-Worm.Mimail.c | 36 |
| I-Worm.Dumaru.a | 28 |
| I-Worm.Mimail.txt | 25 |
| Exploit.IFrame.FileDownload | 21 |
| I-Worm.Sober | 20 |
| I-Worm.Mimail.g | 13 |
| I-Worm.Swen | 10 |
| I-Worm.Mimail.h | 3 |
| I-Worm.Tanatos.b | 3 |
| I-Worm.Tanatos.dam | 3 |
|
Traffic Analysis Report |
| Mail Filter (acted upon) | Num per Week |
| STA High Spam (Token Analysis) | 302 |
| STA Low Spam (Token Analysis) | 63 |
| BULK (DCC Checksum) | 438 |
| Blackhole List (RBL) | 216 |
| Brightmail Spam | 0 |
| Forbidden Attachment | 16 |
| Virus | 169 |
| Malformed | 28 |
| Pattern Filter SPAM | 0 |
| Pattern Filter Reject | 3 |
| Attempted Relay, Rejected | 46 |
| Dropped | 175 |
| Undeliverable | 0 |
| Reject on No Reverse DNS | 0 |
| De-queued by Admin | 0 |
| Clean or not Scanned | 6063 |
| Total Messages | 7519 |
| Percent Blocked | 19 |
|
The report shown covers the last 7 days only, and is ample demonstration of the prevalence of the virus. The fact is that the MXtreme e-mail firewall with the Kaspersky anti virus engine has prevented well over 1000 items of SPAM, and 169 viruses, and almost 300 other undesireable emails in less than a week.
Related Links
BorderWare e-mail firewall MXtreme
MS Outlook Web Access Vulnerabilities
posted by Robert Campbell 8:17 PM
|
