Tony Northrup Photography

Fun & Humor

Mammals
   Tigers
   Lions
   Monkeys
   Pigs
   Bears
   Squirrels
   Wolves
   Foxes
   Deer
   Goats
   Cows
   Dolphins
   Seals
   ...more

Birds
   Ducks
   Eagles
   Robins
   Penguins
   Parrots
   Owls
   Hawks
   Falcons
   Parrots
   Swans
   Chickens
   Turkeys
   ...more

Insects
   Butterflies

Reptiles
   Snakes
   Frogs
   Turtles

Fish

Spiders

Travel
   Paris
   Rome
   Florence
   Prague
   San Fran
   Boston
   Chicago
   ...more

Flowers
  Roses

Portfolio

Nimda: A Threat To Your Privacy

Updated September 24, 2001.  Tony Northrup.

(This page is for non-technical people.  If you're technical, go here.  If you've already been infected with the Nimda worm, go hereRead this page if you want to learn how to secure your system against other types of attacks besides Nimda.)

If you use Windows, and you connect to the Internet, the Nimda worm can infect your system.  In fact, your system may be affected right now--you probably wouldn't notice it.  It has already infected more than 1,100,000 systems.  If you don't use antivirus software, it can probably infect your system.  If it does, anyone can see your files.  Anyone can see every Web site you have visited.  This guy, who likes MP3s, sports and porn, still doesn't know he's infected because he doesn't use anti-virus software.  The Nimda virus will use your computer to attack other computers on the Internet.  This computer has been attacked 36,000 times already, and the virus is only five days old.

"I'm smart enough not to open file attachments"

Good--that's the reason the Melissa virus never got you.  This is good practice, but the Nimda virus can infect your computer even if you never open file attachments.  Even if you don't use Microsoft Outlook.  Even if you don't use Internet Explorer. 

"I'm up-to-date on my patches"

Doesn't matter--you may still be vulnerable.  Applying patches is a very good idea, but it's not enough to protect yourself from Nimda.  However, the Nimda virus uses several different methods to attack your computer.  No patch can protect you from all of them:

  • Browsing Web Sites.  Web servers infected with Nimda will send you the virus and you will be automatically infected without knowing it.  Many well-known sites have been infected.  If you upgrade to Internet Explorer 6, this one problem is solved.
  • Reading E-Mail.  It spreads like Melissa and the "I love you" virus, except you don't even have to open the attachment with some mail clients.  You just have to read the e-mail.  Seriously.  Outlook Express will automatically run the virus, even if you just preview an infected message--you don't even have to open the attachment.  If you use another e-mail program, you may still be tricked into executing the attachment. Some mail clients, like Outlook XP, automatically block the attachment, but you're still vulnerable in other ways.
  • Accessing Network Drives.  If your company gives you a network drive to share files with your coworker, Nimda will use this to infect you.  It hides inside of your files, and only a virus-checker can find it.  There is no patch to prevent this. I personally have seen many otherwise safe systems infected this way.
  • Running a Web Server.  Many people are running Web server without knowing it.  Nimda uses the backdoor left by CodeRed II.  Even if you've patched your system, it's possible that this backdoor exists and you never noticed--anti-virus software will detect this.

You are safe from Nimda only if you meet all of these requirements:

  • You don't use Internet Explorer, or you've got all the latest patches installed.
  • You don't use Outlook Express and your e-mail client blocks .exe file attachments.
  • You don't run IIS, or you have the latest patches AND you're sure you weren't infected by CodeRed II before patching.
  • You don't access network folders.

These requirements are complex, and many people think they're protected but they aren't.  In fact, many skilled technical people are being infected because they accidentally opening a file attachment or access an infected file on a network folder.  And, even if you're safe from Nimda, you may not be protected from the next virus or worm. Please read on...

"Okay already.  How do I protect myself?"

Install a virus-checker, and make sure it's up to date.  You can get one for free.  Then do a full scan of all files on your computer.  All virus checkers have a way to update themselves by contacting a Website and downloading updated virus signatures.  For example, if you use Norton AntiVirus, it's called LiveUpdate.  Run that now, because the updates for this virus weren't released until Wednesday, September 19.  Then do a full scan of your computer.

If you don't have a virus-checker, install one.  You can download free trials that last 30 days without paying for anything.  Please do that now, to protect your private data and to keep the Internet safe.  Tell everyone you know.  Here are several solutions, in no particular order:

Another good practice is to install free personal firewall software, such as ZoneAlarm.  I use it.  It won't always stop your system from getting infected, but at least it will make you aware that your system is being used to attack others.

Oh, and tell everyone you know so that they're protected too.

Add an anonymous comment!
Hide comments!


More in a moment on the Travertine Question. , (10/23/2009, 4:57 AM)
We feel the urgency, combined with possibility: do we act or not? , (10/22/2009, 5:21 AM)
Mass expulsions as I have defined them here are actually not possible in a brute physical sense. , (10/10/2009, 7:29 PM)
Capybara's rock! (4/16/2006, 7:33 PM)
rene napoli advised me to protect myself, he had his privacy invades by a guy in palo alto company who accused him of doing things. Well we discovered it was not Rene, but a guy in silicon valley plugin company. (7/11/2005, 8:32 AM)