It's time to fix AV warning messages

Many AV products or services will warn customers if a virus is detected in an incoming message. Some sort of "virus alert" notification lands in an end-user's inbox. It'll either include the original message with the attachment stripped out, or consist of a simple notification that "so-and-so sent you a virus, and click here to read the message in the quarantine." The intention is that you can notify the sender that there's a virus on their PC.

Here's the problem: these days, most virus-infected e-mail isn't sent by unknowing individuals. It's sent by other viruses. It's effectively spam, except the motivation is to take over your computer, not to sell you herbal enhancements, fake watches, or the latest small cap. In fact, the viruses will often use the same lists of recipients as spammers do. And there's no point in contacting the "sender" of the message -- it's probably forged. Opinion: It's time to fix AV warning messages

Linked by shanmuga Friday, 14th April 2006 1:37AM