Online Gaming At Its Best. Click Here!
http://www.kumite.com/myths
 Computer Virus Myths home page
Tell friends & colleagues about virus hoaxes the easy way

Opinions & editorials

Selected op-ed pieces designed to make you think. Or as we like to say: "Caesar si viveret, ad remum dareris."

"INFOCON DELTA" means the military treats the Internet as a battlefield, complete with damaged PCs and smoldering mousepads. Bomb disposal units will use the Minesweeper game to locate unexploded Pentium chips...

The media calls each of these events a "cyber war." What word will they trivialize when something worse comes along? Perhaps "cyber genocide" or "cyber holocaust"?
[top secret] vs. Liberia
China vs. Taiwan
(and more recently)
Taiwan vs. China
 
Other recent "cyber wars"
Australia vs. Australia!
USA vs. Australia
[top secret] vs. USA
India vs. Pakistan
East Timor vs. Indonesia
(declared, then postponed)
a related cyber war:
Indonesia vs. Ireland
USA vs. Yugoslavia
Serbia vs. NATO
China vs. NATO
China vs. Canada

Notable quotables

"We want to unleash viruses on our network as a test..."

Did you ever touch the paint because you couldn't take a "wet paint" sign at face value? Read some actual messages left by network gurus who wanted to receive viruses because they can't believe antivirus software will work until they see it in action for themselves. (compilation by Rob Rosenberger)
Funny stuff!
Internet Underground
magazine called it "the
biggest computer virus
myth of all time"
(so big, it spawned a
humorous advisory)

Interesting quotes from the experts

Computer virus experts tell it like it is. (compilation by Rob Rosenberger)

Bizarre quotes from the experts

Of course, even real computer virus experts go overboard on occasion. (compilation by Rob Rosenberger)
(return to top)

Rob Rosenberger

A self-proclaimed virus myths researcher who got started in 1988

The Y2K virus media fiasco

"Another media fiasco." What else can you say about the worldwide hysteria surrounding Y2K viruses? We haven't seen something take a dive like this since the last Don King fight... (2000 opinion piece)

A "Y2K virus" conversation

A fearmonger tries to convince a skeptic of the worldwide threat posed by unknown Y2K viruses. It takes a lot of guts to scream about viruses which don't yet exist. Or maybe it just takes a lot of gullibility... (1999 opinion piece)

Show me the virus metrics!

Let's say viruses got big in 1986, and let's say the web got big in 1996. Time for a simple comparison: webmasters can analyze web visits three years after the web got big, yet virus fighters cannot analyze virus detections thirteen years after viruses got big. This utter lack of virus metric utilities will soon change, though... (1999 opinion piece)

CERT® missed Melissa's ultimate lesson

The Melissa virus slipped past gateway antivirus packages, email backbone antivirus packages, and file server antivirus packages. It slipped past desktop antivirus packages which bind directly to the user's email client and monitor every file the user opens in Word. CERT director Richard Pethia, in written congressional testimony, blamed Melissa's spread on everything except this one overwhelming vulnerability... (1999 opinion piece)

"Precautionary disconnect" -- a disturbing new trend

Microsoft disconnected from the Internet during a pitched battle with the Melissa virus. When the media reported it, hundreds of corporate and government lemmings disconnected from the Internet in fear. More recently, USAF's Air Combat Command shut down at least 17 bases when they heard about ExploreZip. Some computer security offices now turn the Internet off & on like a light bulb, ironically after paying big bucks to increase the reliability of their Internet connections... (1999 opinion piece)

FutureVision Group controversy

Suppose a 15yr-old announced he wrote an unstoppable, undetectable computer virus which defies the laws of physics and mathematics. Suppose he claimed his virus could infect every computer on Earth and could physically destroy those computers at will. Suppose this kid plucked big words from a dictionary and swiped phrases from Star Trek and The X-Files. Would you take this 15yr-old seriously if he presented no objective evidence to support his claims? Okay then -- would you take an adult seriously if he called himself a quantum physicist...? (1998 opinion collection)

Microsoft paves way for "email macro viruses"

Email works right now like a vigorously shaken soda can. You won't get sprayed in the face if you look at the can with your eyeballs, and your computer won't get infected if you look at the text of an email with your eyeballs. In either case, you'd need to open the attachment (at the top of the can or inside the message) before anything unwanted could happen. But notice I said email works "right now" like a soda can. Microsoft may soon change the fundamental nature of email... (1998 opinion piece)

Network Associates merger

McAfee Associates recently merged with Network General to form a corporation now known as Network Associates. McAfee's stockholder notification book contains some interesting tidbits... (1998 opinion piece)

Random thoughts on the passing scene

A continuing series of short opinion pieces, often covering topical issues. (1998 opinion collection)

Stop arguing over Symantecs

It came as no shock when Symantec sued McAfee -- those two vendors fight all the time. But in this case, the normally placid Symantec switched to an anything-goes fighting style and pulled a lot of dirty tricks... (1997 investigative report)

McAfee's media-assault tactics

McAfee Associates continues its tradition of generating negative publicity for rivals. This time, though, they got caught demonstrating how to maliciously exploit a competitor's program. Why doesn't McAfee focus instead on writing better antivirus software? (1997 opinion piece)

Netscape: unsafe at any modem speed?

A Netscape spokesman kicked Microsoft in the teeth while touting the safety of his company's software -- but one week later, Netscape tried to cover up the existence of another "serious" security flaw. Anyone on the Internet can read your email if you use Netscape Navigator -- even your deleted email. If you think that's bad, you should hear how Netscape covered up the existence of the "HTML page o' death" bug last year... (1997 opinion piece)

Honest, Senator! A computer virus ate my Gulf War records

Investigators looking into 'Gulf War Illness' want to see records kept on the destruction of Iraqi warheads. The Defense Department claims a computer virus destroyed the destruction logs. (How ironic.) A conspiracy to hide vital information from the Senate Armed Services Committee? Not likely. It's just a childish "dog ate my homework" excuse... (1997 opinion piece)

Picture-perfect paranoia

Picture this: a woman wakes up in the morning. She grabs a gun & flashlight hidden under the pillow and methodically searches her entire house for deranged killers. She does this every morning. Now picture this: a man turns on his computer in the morning. Before it does anything else, the computer runs two antivirus programs which methodically search the entire system for deadly computer viruses. He does this every morning... (1997 opinion piece)

Java Trojans -- what about them?

The media writes scary stories about the potential threat posed by 'hostile Java applets' ... yet the antivirus industry seems pretty bored with it. What gives? (1996 opinion piece)

Virus-related stereotypes

A list of interesting stereotypes associated with computer viruses. Stereotypical example: "always scan for viruses after the fact -- after installing new software, after running software from a floppy disk..." (1996 opinion piece)

Hare Fiasco: a Historical Timeline

Take a chronological look at major media events and some of the key names behind the worldwide panic of the Hare computer virus scare of 1996. (1996 timeline piece)

Seat belt? Check. Air Bag? Check. Computer backup? Duh...

Every U.S. military aircraft, ship, vehicle, and mainframe computer employs "fail-safe" options and "disaster recovery" capabilities. But our vaunted Defense Dept. still hasn't considered the possibility of disaster in the millions of desktop computers they've purchased. (1996 opinion piece)

Computer Viruses and 'False Authority Syndrome'

Many people sound confident when they talk about computer viruses -- yet very few have adequate knowledge of this technically obscure subject. Most fall prey to what some virus experts call "False Authority Syndrome," and it contributes significantly to the spread of fear & myths about computer viruses. This treatise persuades readers to question the credentials of anybody (including Rosenberger!) who claims to speak with authority on this subject. (1995-96 opinion piece)

False 'virus alerts' on major online services

Almost all "alerts" of viruses in files on major online services prove unfounded. In some cases a user who posts the virus warning doesn't know what file he downloaded (if any) or even what areas he visited on the online service. (from the treatise "Computer Viruses and 'False Authority Syndrome'" by Rob Rosenberger)

So-called "office virus experts"

"Trust me, I'm an expert on marriage. I've been married six times." (from the treatise "Computer Viruses and 'False Authority Syndrome'" by Rob Rosenberger)

False Authority Syndrome vs. the Communications Decency Act

Do tens of thousands of "Blue Ribbon Campaign" supporters know what they're talking about? How many of them will ironically try to censor this blasphemous document when they learn of its existence? (from the treatise "Computer Viruses and 'False Authority Syndrome'" by Rob Rosenberger)

I hope we never find Michelangelo's author

How would you feel if everybody on the planet knew you by reputation -- but didn't know you by name? (1995 opinion piece)

Did my prediction come true?

Some say I hit the nail on the head; others think I'm stretching it. Tell me your thoughts. (1995 opinion piece)

Michelangelo Fiasco: a Historical Timeline

Take a chronological look at major media events and some of the key names behind the worldwide panic of the Michelangelo computer virus scare of 1992. (Note: this reads a lot like the Hare media fiasco of 1996... (1992 timeline piece)

Modems, BBSs, and other tools of Satan

The FBI recently arrested a notorious hacker. A search of his apartment uncovered -- gasp! -- four modems. (1993 opinion piece)

It's shareware, not virusware

A common misconception prevents many people from discovering valuable software. (1991 opinion piece)
(return to top)

Vesselin Bontchev

Research associate, University of Hamburg Virus Test Center

Are "good" computer viruses still a bad idea?

A conflict exists between those who support and those who oppose the idea of a "beneficial virus" -- namely, each side assumes different definitions for what a computer virus is. (c.1994 opinion piece)
(return to top)

David M. Chess

Virus researcher, IBM

Get famous fast!

So you say you're a newly-written virus with no talent or experience, and you want to get famous fast? No problem! Here's some free advice from the Hare viruses, which did just that in August 1996. (1996 opinion piece)
(return to top)

Ian Douglas

Unarmed and Dangerous

If a virus does nothing malicious (i.e. it carries no payload), is it therefore a "harmless" virus? (1994 opinion piece)
(return to top)

Bill Gates

Chairman & CEO, Microsoft

Wasting time on the Internet

Microsoft's founder weighs in with his personal thoughts on the subject of spam & hoaxes. (1998 opinion piece)
(return to top)

Sarah Gordon

Virus researcher, IBM

The Generic Virus Writer and
The Generic Virus Writer II

Four case studies of people who write viruses: an adolescent, a college student, a professionally employed person, and a "mature reformed" ex-writer. (1994 opinion piece and a follow-up 1996 opinion piece)
(return to top)

Mich E. Kabay, Ph.D.

Director of Education, National Computer Security Association

The Fruit of the Poisoned Tree:
Why Criminal Hackers Must Not Be Rewarded

Should criminal hackers -- including malicious virus writers -- be treated as valuable contributors to national and corporate security? Absolutely not. (c.1996 opinion piece)

Totem of Taboo in Cyberspace

Are virus writers and hackers crazy? The standard reference work on psychiatric disorders defines Narcissistic Personality Disorder as:
"a grandiose sense of self-importance or uniqueness; preoccupation with fantasies of unlimited success; exhibitionistic need for constant attention and admiration; characteristic responses to threats to self-esteem; and characteristic disturbances in interpersonal relationships, such as feelings of entitlement, interpersonal exploitativeness, relationships that alternate between the extremes of over idealization and devaluation, and lack of empathy...."
It certainly applies to the majority of people who label themselves virus writers -- particularly the ones who [claim to?] write malicious viruses. (1994 opinion piece)
(return to top)

Chengi "Jimmy" Kuo

Director of antivirus research, Network Associates

What is not a virus

Users incorrectly report far more "Not A Virus" incidents every day compared to actual cases of virus infections. This white paper offers a glimpse at some of the interesting "Not A Virus" reports. (c.1996 white paper)
(return to top)

Mark Ladue

Java Security: Whose Business Is It?

A different perspective (complete with hotlinks) on the topic of "hostile Java applets." (1996 opinion piece)
(return to top)

Alex Lash

Reporter, c|net

Sun pays for ActiveX attack

Sun Microsystems CEO Scott McNealy desperately wanted to show Microsoft's ActiveX is inferior to Java. So he paid an expert (Fred McLain) to exploit ActiveX security flaws. Just one more twist in the growing field of "malicious beta testing." (1997 report)
(return to top)

Brock N. Meeks

Publisher, CyberWire Dispatch;
Chief Washington correspondent, Wired/HotWired

Time magazine's credibility is hemorrhaging

Time's recent "Cyberporn" cover story ignited a firestorm with its overblown coverage of a statistically inconsequential study written by a university undergraduate. Some people went so far as to label it a "fraud." Meeks' analysis shows how a major media outlet ignored credible sources when offered a "provocative" story about computers & pornography. (1995 opinion piece)
(return to top)

Eric S. Raymond, et al.

The Jargon File

Appendix B: a portrait of J. Random Hacker

A widely quoted profile published in The Jargon File on the stereotypical hacker, especially those who write computer viruses. (Interesting point: this profile describes webmaster Rob Rosenberger right down to the cats, the unwashed RX-7 sports car, and the horrible handwriting.)
(return to top)

"Renderman"

Hacker

How the A/V Industry Works

A hacker who attended DEFCON describes "the mosh pit of Anti-Virus employees" who scrambled like crazed fans for a copy of BO2K at its debut party. Renderman questions the antivirus industry's undocumented (and therefore arbitrary) opinions of what constitutes "malicious" software.
(return to top)

Michael Schrage

Computerworld Viewpoint freelance

Should virus carriers wear a scarlet V?

Schrage asks a simple question: why don't companies internally publicize the names of employees who accidentally spread viruses? "We're talking about making the community more aware of which members respect the virtues of safe computing and which ones don't...."
(return to top)

George C. Smith, Ph.D.

Crypt Newsletter editor

Pentagon mandarins: To save face, nose must be amputated

The editor of the Crypt Newsletter exposes the U.S. military's debate over whether they should permanently disconnect from the Internet. The reason? They can't withstand assaults from 14yr-old hackers... (1999 opinion piece)

An Electronic Pearl Harbor? Not Likely

Smith (writing for the prestigious National Academy of Sciences here) explains how the U.S. military-industrial complex overstates cyber threats. The government's dire predictions include an "electronic Pearl Harbor" by 2003, where terrorists give up bombs & nerve gas in favor of computer viruses... (1998 opinion piece)

How I Learned to Stop Worrying and Love the Virus

Smith (writing for The Netly News here) exposes a monograph on Russian military views toward information warfare. The Russians apparently believe the NSA printer virus hoax and other virus myths... (1997 opinion piece)

Microsoft: your one-stop shop for macro viruses

Smith slams Microsoft for repeatedly distributing Word macro viruses in its own products and via its own website. (1997 opinion piece)

Hoisted on the petard of Penpal

Smith exposes an astonishing gaffe where a senate commission looking into government secrecy got hoodwinked by a computer virus hoax. (1997 opinion piece)

Bunker mentality in USAF info-war kooks

Smith points out a typical military news story where an official declared an Air Force base "under attack" from viruses. "As evidence of the increase in information warfare activity, communications officials at Goodfellow [AFB] have logged 12 incidents of computer viruses in less than four months this year..." (emphasis added). (1997 opinion piece)

Corporate Propaganda, Inc.

Smith points out Symantec's latest attempt to drum up publicity with its 'National Virus Awareness Month Retail Promotion' -- so he proposes a corresponding 'Symantec Awareness Month' which ends on April Fool's Day. (1997 opinion piece)

FBI touts virus jokes as the real thing

Smith tears into an embarrassing FBI report where the authors cited five virus jokes as legitimate computing threats. (1996 opinion piece)

Larry Magid's Syndicated Virus Advice: Threat or Menace?

Smith dissects computer pundit Lawrence Magid, showing how the syndicated columnist suffers from false authority syndrome when he speaks about viruses. (1996 opinion piece)

The Hare Virus: Another Bogus Virus Scare

Smith offers a highly charged analysis of the Hare virus media fiasco -- just one more in a string of serious media fiascos over the years. (1996 opinion piece)

Symantec's Norton Antivirus Preys upon Fear and Ignorance For Sales

Another highly charged analysis, this one dealing with ... well, the title probably speaks for itself. (1996 opinion piece)
(return to top)

Morton Swimmer

Virus researcher, IBM

Where's Wazzu?

The world wide web positively reeks of documents damaged by the Wazzu virus. Not infected, mind you -- just damaged. You can see for yourself by playing the "Where's Wazzu?" search-engine game. Yep, even the mighty Microsoft gets caught up in this game! (1996 opinion piece)
(return to top)

Brooks Talley & Holly Blumenthal

Columnists, InfoWorld

If at first you don't succeed, buy a big showy ad that says you won anyway

That's the actual title of a 4/14/97 InfoWorld editorial about Network Associates, back then known as McAfee Associates. Their advertising "doesn't reflect our [test] results fairly. In fact, we're wondering who exactly is working over there that could be guilty of both grossly misrepresenting our results and coming up with such weaselly fine print (which, it turns out, is wrong)"... (1997 InfoWorld editorial)

(return to top)

Joe Wells

editor, The WildList;
senior editor, IBM's antivirus online

How to Spot a Virus Hoax

The man behind the de facto list of viruses known to exist "in the wild" provides valuable advice on how to spot common virus hoaxes.
Top of page Home page Index page No frames Thinkers' page Copyright info Common myths Recommended stuff 1st opinion
email