X-Spam-Check-By:	sourceware.org
Date:	Thu, 16 Aug 2007 13:48:54 +0100
From:	"Martha Adams" <mhada AT verizon DOT net>
Subject:	Attack against Cygwin?
To:	<cygwin AT cygwin DOT com>
Cc:	<mhada AT verizon DOT net>
Message-id:	<000301c7e003$d091d390$2f01a8c0@yourvs85n1xobx>
MIME-version:	1.0
X-Mailer:	Microsoft Outlook Express 6.00.2900.3028
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com

Hi, I'm a Cygwin user for some time past; and I check
my machine frequently using Grisoft AVG Free.  On 
Aug 10 my AVG found something called Obfustat.GCD
(not Obfustated.GCD) which it said had infested
several files with particular focus on Cygwin.  I have
Googled on 'Obfustat.GCD' and today one hit came
up: 

minkara.carview.co.jp/userid/299856/blog/5808766/

which is in Japanese but Google does a translation
of sorts.  This apparently was posted Aug 8, and the
writer mentions Cygwin.

On Aug 9 my AVG found 'Win32/Polycrypt' as seven
or so *.dll files including Byte\Byte.dll, CN\CN.dll, 
and EBCDIC\EBCDIC.dll.

Two attacks in two days, gets my attention.  Does it
deserve yours, and a general warning?

Cheers -- Martha Adams     [to cygwin AT cygwin DOT com,
2007 Aug 16]



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -