Browse archive

Latest news

Experts highlight top data breach vulnerabilities

Review: Logging and Log Management

Commission wants to minimize U.S. IP theft economic impact

NYPD detective accused of hiring email hackers

Why BYOx is the next big concern of CISOs

Free tool repairs critical Windows configuration vulnerabilities

Guantanamo cuts off Wi-Fi access due to OpGTMO

IT pros focus on cloud security, not hype

Blue Coat to acquire Solera Networks

APT1 is back, attacks many of the initial U.S. corporate targets

Aurora attackers were looking for Google's surveillance database

U.S. DOJ accuses journalist of espionage

Find TrueCrypt and BitLocker encrypted containers and images

The CSO perspective on healthcare security and compliance

Hacking charge stations for electric cars

'JDBGMGR' causing net confusion - Sophos says don't be duped by hoax

Posted on 15 May 2002.

Sophos, a world leader in corporate anti-virus protection, today warned computer users to be sceptical following the latest hoax message about a 'virus' sweeping the internet. Sophos has already received enquiries from thousands of concerned computer users.

The fake warning tells users to search their hard drives for a file called JDBGMGR.EXE. The message also advises users to delete the file because it is infected by a virus which may trigger after 14 days.

But JDBGMGR.EXE is the Microsoft Debugger Registrar for Java and may be present quite legitimately on many computers.

The confusion is compounded by the W32/Magistr-A virus which is capable of emailing infected copies of JDBGMGR.EXE to innocent users. Most anti-virus software has been capable of detecting W32/Magistr-A for over a year.

"If you receive an unsolicited executable file in your email, simply delete the email," said Graham Cluley, senior technology consultant at Sophos Anti-Virus. "This is a confusing hoax, but the message is simple: you should never launch or open unsolicited code on you computer. The best way to check for a virus infection is with anti-virus software. If your anti-virus software is up to date, you will be protected from the Magistr virus anyway."

Sophos reminds users that they should not pass on virus warnings to friends. Instead, check the facts at an anti-virus website, or forward the warning to the person in your company who is responsible for virus protection so they can decide if it is valid.

Sophos offers a free hoax information feed, which enables webmasters to place "always fresh" data about the latest internet myths, as well as real virus threats, on their public websites and company intranets. For more information, and to quickly add the feature to your website or intranet please visit: http://www.sophos.com/virusinfo/infofeed/

Sophos has published advice on this hoax at:
http://www.sophos.com/virusinfo/hoaxes/jdbgmgr.html

More information about Magistr-A is available at:
http://www.sophos.com/virusinfo/analyses/w32mag.html

ABOUT SOPHOS
Sophos is one of the world's largest specialist developers of anti-virus software. Headquartered in the UK, its products are sold and supported through a global network of subsidiaries and partners in more than 150 countries. Sophos solutions are specifically designed to protect businesses and organisations from virus attack. The company's products are widely deployed by large corporations, banks and governments.