I looked up the article Craig mentioned.  This part should make anyone
involved in IT in education squirm;

"Banking officials not involved in the case have said the theft could be
part of a larger trend in which computer thieves break into the accounts
of municipalities and school districts and wire funds out of the

"That often makes it difficult for authorities to retrieve the stolen
money and apprehend suspects. Computer hackers are suspected in a $3
million theft in December from a Schenectady County school district.

Steve Barner, South Burlington

-----Original Message-----
From: School Information Technology Discussion
[mailto:[log in to unmask]] On Behalf Of Eric Hall
Sent: Wednesday, February 10, 2010 3:22 PM
To: [log in to unmask]
Subject: Re: Virus epidemic

Has anyone tried Trend's Housecall on this bug?


on 2/10/10 2:10 PM, Robin Gouin wrote:

> Craig,
> yes we had a few too.  We used Malwarebytes and Superantivirusfree 
> version and they seemed to work.  Some we had to run in safe mode they
were so bad.
> Make sure you have your restore point shut off.
> Robin
> On Wed, Feb 10, 2010 at 1:59 PM, Craig Lyndes @
> <[log in to unmask]>wrote:
>> Folks,
>> We're on our fourth Internet Security 2010 virus today!!!  This has 
>> become our biggest service issue.
>> One question - does anyone have an antivirus program that prevents a 
>> computer from becoming infected once a compromised web site is
>> I can say unequivocally that Microsoft Security Essentials and AVG DO

>> The human engineering with this virus is excellent.  Once the person 
>> becomes convinced that they should install the program that pretends 
>> to be antivirus (but is actually a virus) then nothing, the antivirus

>> we install, or Windows, stops them.
>> I read an article yesterday that said there is a keystroke logger is 
>> part of some of these variations, and that has lead to $370,000 being

>> transferred from the accounts of the town of Poughkepsie NY to 
>> somewhere in the Ukraine.  I have alerted the business office.
>> One of the people today said it first struck from Yahoo....  This is 
>> really bad news.  Maybe an ad not they Yahoo web server, but it isn't

>> from muck raking.
>> Thank god for imaging.
>> Craig Lyndes

CONFIDENTIALITY NOTICE: This e-mail message, including any attachments,
is for the sole use of the intended recipient(s) and may contain
confidential and privileged information protected under the Family
Educational Rights and Privacy Act. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not an intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the message.

This email may contain information protected under the Family 
Educational Rights and Privacy Act (FERPA) or the Health Insurance 
Portability and Accountability Act (HIPAA).  If this email contains 
confidential and/or privileged health or student information and you 
are not entitled to access such information under FERPA or HIPAA, 
federal regulations require that you destroy this email without 
reviewing it and you may not forward it to anyone.

This message has been scanned for viruses and
dangerous content by MailScanner, ClamAV and Bitdefender  and is
believed to be clean.