Notices
NSC-040225: W32.Netsky.C@mm Spreading Rapidly on Campus
Today a new version of the Netsky.C virus started spreading in the wild. W32.Netsky.C is a mass-mailing worm that uses its own SMTP engine to send itself to the email addresses it finds when scanning hard drives and mapped drives. This worm also searches drives C through Z for the folder names containing "Shar," and then copies itself to those folders.
At 11:45 the campus wide e-mail gateway antivirus was updated and we are now blocking all these messages before they are delivered to users mailboxes. Unfortunately a large number of these virus have already been delivered to users. These message should be deleted.
The Subject, Body, and email attachment vary for each copy of the virus. The following link lists some examples of the virus subject and body message http://securityresponse.symantec.com/avcenter/venc/data/w32.netsky.c@mm.html
Symantec has provided a live update and at this time we are urging all users to apply this update to there systems and then reboot their systems.
The IT Security Office will be scanning for infected machines and sending out notices via the NSC building lists.