Virus names likely a lost cause

Virus names likely a lost cause
Robert Lemos, SecurityFocus 2006-03-09

In early February, antivirus firms warned customers about a computer virus programmed to delete files on the third of each month, but almost every company called the program by a different name.

Expand all | Post comment

What Mac viruses? 2006-03-10
MAc IT

Virus names likely a lost cause 2006-03-10
Juha-Matti Laurio

Saying that there is no time to correlate the names is not a real reason. If you have motivation you have some minutes for naming process too.

Another problem is variant names:

When Sophos had name W32/Nyxem-D in use, Kaspersky assigned the name Email-Worm.Win32.Nyxem.e (same as F-Secure's .E variant name). It is hard to say which of them was the first, but without working naming system it's possible just to catch new 'E' when some companies are using 'D' already. Additionally, some vendors use capitals, some don't, some vendors has their own '@mm' or '!wm' suffix, Microsoft uses Win32/Mywife.E@mm!CME-24 etc. etc.

Informative FAQ pages like SecuriTeam's and SANS ISC's FAQ entries are more than needed.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11380/33319#33319

Virus names likely a lost cause 2006-03-11
Anonymous

Even IT professionals don't know term CME or CME-24 2006-03-13
Juha-Matti Laurio

Linnaeus 2006-03-14
Roger

Virus names likely a lost cause 2006-03-15
Rob Carlson (2 replies)

Re: Virus names likely a lost cause 2006-07-21
Anonymous

Re: Virus names likely a lost cause 2008-07-02
Anonymous