You are the 7,244,006th visitor to the CIAC Internet Hoax and Chain Letter pages since February 1995.
Interspersed among the junk mail and spam that fills our Internet e-mail boxes are dire warnings about devastating new viruses, Trojans that eat the heart out of your system, and malicious software that can steal the computer right off your desk. Added to that are messages about free money, children in trouble, and other items designed to grab you and get you to forward the message to everyone you know. Most all of these messages are hoaxes or chain letters. While hoaxes do not automatically infect systems like a virus or Trojan, they are still time consuming and costly to remove from all the systems where they exist. At CIAC, we find that we spend much more time de-bunking hoaxes than handling real virus and Trojan incidents. These pages describe some of the warnings, offers, and pleas for help that are filling our mailboxes, clogging our mailservers, and that generally do not have any basis in fact.
In addition to describing hoaxes and chain letters found on the Internet, we will discuss how to recognize hoaxes, what to do about them, and some of the history of hoaxes on the Internet.
Users are requested to please not spread chain letters and hoaxes by sending copies to everyone you know. Sending a copy of a cute message to one or two friends is not a problem; but sending an unconfirmed warning or plea to everyone you know with the request that they also send it to everyone they know simply adds to the clutter already filling our mailboxes. If you receive any of this kind of mail, please don't pass it to everyone you know, either delete it or pass it to your computer security manager to validate. Validated warnings from the incident response teams and antivirus vendors have valid return addresses and are usually PGP signed with the organization's key. Alternately, you can and should get the warnings directly from the web pages of the organizations that put them out to insure that the information you have is valid and up-to-date.
These pages are made available to you by the Office of the Chief Information Officer of the U. S. Department of Energy and the CIAC computer incident response team.
-------------------------------------------------------------------------------- -------------------------------------------------------------------------
-- -------------------------------------------------------------------------What's On This Server?Hoax Categories - finding a hoax by category.
Hoax Index - All categories listed on one page.
Hoax Search - Search for a hoax on these pages.
What are Internet Hoaxes and Chain Letters? The Risk and Cost of Hoaxes.
Recognizing hoaxes.
What to do if you receive a hoax or chain letter.
History of Internet Hoaxes.
Other hoax pages.
CIAC Home Page.
U.S. DOE Home Page.
Malicious Code Notice If you are sending us malicious code (viruses, Trojans, or other digital beasties) for any reason, please mail that code as an attachment to: otherwise it will be removed by our virus scanning software. Send mail to ciac@ciac.org to let us know the malicious code is there. Do not use this address for questions, descriptions of malicious software, or any other reason but for sending the malicious software itself. You may also put the code in the incoming directory of our anonymous FTP server and then send mail to ciac@ciac.org telling us that it is there. Please note that our constituents are the U.S. Department of Energy and its contractors. While we try to answer mail from others, we cannot guarantee that we will do so.
-------------------------------------------------------------------------------- ------------------------------------------------------------------------- -------------------------------------------------------------------------