Net Q & A

Yeah, I know, nongeeks don't like to think about computer viruses. This might be a good time to spread a little attention their way, however, because not not even the best MIS department can be trusted to provide 100% protection, and some experts are expecting a new wave of particularly infectious and destructive viruses in the coming year. An MSNBC story pointed out one reason for concern:

"People have now forgot the lessons learned from LoveLetter, are relaxing their security, forgetting to update their virus signatures. Conditions are now ripe for the next big one."

The problem is exacerbated by the fact that, as damaging as the last round of viruses (LoveLetter, et. al) was, there is clearly potential for the last wave of computer viruses to be much worse. The last round of viruses did not combine the most infectious techniques for spreading viruses (some of which don't depend on the recipient opening an infectious attachment) with the most destructive "payloads." For example, the LoveLetter virus limited its destruction to one type of graphics files (.jpg). A more malicious virus writer would not have been so restrained.

The editors of the Northern Lights search engine site have done an excellent job compiling a bibliography on computer viruses:

http://special.northernlight.com/compvirus/ 

As Sergeant Phil Esterhaus used to advise on Hill Street Blues, "Let's be careful out there." In the virus context, being careful would include:

a. Regular backups of your data, tested to verify they are good, and stored on non-networked media.

b. Keeping your anti-virus "signature" files up to date.

c. Never opening executable files attached to e-mail unless you are certain they are safe.

It is also a good idea to install any available patches for your e-mail software. This is particularly important if you are using Microsoft Outlook or Outlook Express, both of which are known to be particularly vulnerable to virus infections due to Microsoft's use of questionable programming techniques. Information about several of the security holes affecting Outlook 97, 98 and 2000 is available at http://www.microsoft.com/office/outlook/default.htm. You can find a July 2000 patch for Outlook Express (a completely different program, despite the confusingly similar name) by searching the Microsoft site for "Outlook Express."

Don't let installing the patches and keeping your anti-virus signatures up to date give you a false sense of security. New viruses are coming out all the time and there is no guarantee that even the newest patches and signatures will catch them. Therefore, make sure you have backups of all your irreplaceable data, and keep your wits about you when confronted by suspicious-looking files.