Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!mnetor!uunet!pyrdc!netxcom!ewiles From: ewiles@netxcom.UUCP (Edwin Wiles) Newsgroups: comp.misc Subject: Re: Trojan Horse a Myth? Message-ID: <561@netxcom.UUCP> Date: Mon, 7-Dec-87 10:01:40 EST Article-I.D.: netxcom.561 Posted: Mon Dec 7 10:01:40 1987 Date-Received: Sat, 12-Dec-87 12:44:55 EST References: <459@gtx.com> Reply-To: ewiles@netxcom.UUCP (Edwin Wiles) Distribution: na Lines: 28 In article <459@gtx.com> al@gtx.UUCP (Al Filipski) writes: > >It seems to me that the Professor is being quite naive. We all know >how easy it would be to create a Trojan Horse Program, and even, with a >little more difficulty, make it infect the user's system in subtle >ways. As for the question, "has anyone actually been hurt by one of >these?", I only know third-hand accounts. Can anyone relate a >first-hand account of damage done to his/her system by a malicious >Trojan Horse? > See the last few issues of RISKS digest on this network. There is actually a message from a student who wrote a virus (admitedly designed NOT to do damage, but ended up doing it anyway). Additionally, there have been reports in the new 'misc.security' newsgroup of a virus that was DEFINITELY harmful, and caused serious damage. These reports were apparently made by a university prof. who got burned by it. They may not directly qualify as 'trojan horses', in that neither of them was designed to allow illicit access to the infected systems, but they easily could have been designed to do so. And their spread rate is incredible. -- ...!hadron\ "Who?... Me?... WHAT opinions?!?" | Edwin Wiles ...!sundc\ Schedule: (n.) An ever changing | NetExpress Comm., Inc. ...!pyrdc\ nightmare. | 1953 Gallows Rd. Suite 300 ...!uunet!netxcom!ewiles | Vienna, VA 22180