Bruce Schneier

 

Blog

Crypto-Gram Newsletter

Books

Essays and Op Eds

News and Interviews

Audio and Video

Speaking Schedule

Password Safe

Cryptography

About Bruce Schneier

Contact Information

 

Schneier on Security

A blog covering security and security technology.

« Foiling Counterfeiting Countermeasures | Main | Bomb-Sniffing Dogs on Subways »

January 19, 2006

20th Anniversary of the Computer Virus

Today is the 20th Anniversary of the oldest computer virus known: the Brain virus.

It was a boot sector virus, and spread via infected floppy disks.

EDITED TO ADD (1/19): F-Secure has some amusing comments.

EDITED TO ADD (1/30): As many people pointed out, Brain is not the first computer virus. It's the first PC virus.

Posted on January 19, 2006 at 9:53 AM23 Comments

To receive these entries once a month by e-mail, sign up for the Crypto-Gram Newsletter.

Comments

C SmithJanuary 19, 2006 10:16 AM

Interesting ... I thought the oldest known virus was Elk Cloner for the Apple ][, dating from 1982. That would make it about 24 years old.

http://en.wikipedia.org/wiki/Elk_Cloner

Brain might be the oldest *PC* virus, though.

Mad PatterJanuary 19, 2006 10:17 AM

That's nonsense. Everyone knows Apples don't get viruses.

Alun JonesJanuary 19, 2006 10:21 AM

Ouch.

My introduction to computer viruses was in the mid eighties at college, on aging Apple Macs. I asked why the viruses spread, and was told that every time you put a floppy in the drive, the Mac would execute a desktop program on the disk.

Even then, naive as I was, this sounded like a really stupid idea.

So I groaned when Windows introduced Autoplay, which was basically the same feature.

Now, I disable that kind of feature whenever I find it.

GooseJanuary 19, 2006 10:53 AM

Does anybody recall a TV program dedicated to the BBC Microcomputer? Maybe a Brits only thing, but they showed a BBC Microcomputer virus that made the text fall off the screen. Many many moons ago...

G

ShuraJanuary 19, 2006 10:58 AM

That's the oldest PC virus, not (necessarily) the oldest computer virus.

Still, interesting.

kurtJanuary 19, 2006 11:25 AM

actually, it's the oldest pc virus that made it into the wild... it's entirely possible (perhaps even probable, given cohen's earlier work in the field) that there were pc viruses prior to that point that never made it out of the lab...

by rights, if one were going to celebrate milestones for the concept of the computer virus one should look at those who coined the term and work back to when they first had/introduced the idea... which, if memory serves, is november 11 1983...

Dido SevillaJanuary 19, 2006 11:31 AM

Ah yes, those were the days. As far as I can remember, that virus was benign. The only thing it would do would be to change the volume label of every infected (floppy) disk to (c) Brain, and the code that did it would propagate on sectors it purposefully marked bad on the disk (it would not infect disks that didn't have at least 1.5k of free space; three disk blocks). I was nine years old at the time, and read a disassembly of the virus, and that was one of my first steps to becoming an assembly language programmer.

Nicholas WeaverJanuary 19, 2006 11:32 AM

I'll argue that the first real virus was Ken Thompson's self-replicating-code.

So that's even older.

Davi OttenheimerJanuary 19, 2006 11:42 AM

I thought the f-secure blog write-up was pretty funny:
http://www.f-secure.com/weblog/#00000784

I agree with C Smith, Apple was ahead of its time even then by contracting the first viruses. My personal favorite was the old Ivar trojan since you could remotely control a Mac's sound...the installer just posted a fake "bomb" popup with a restart button. Brilliant. Nothing more surprising than your computer crashing and then talking to you after restart.

Faried NawazJanuary 19, 2006 12:41 PM

Supposedly the "ashar" person mentioned in the F-Secure page is Ashar Nisar, who originally wrote the virus and gave it to the Brain people. He later went on to found a company that runs (ran?) Pakistan's TLD: http://www.pknic.net.pk/pknic.html

mpdJanuary 19, 2006 1:04 PM

@ Nicholas Weaver

I'm not familiar with any self-replicating code from Thompson. Do you have any links? Or are you referring to the hacked compiler that introduced a backdoor into the login program during compilation?

Nicholas weaverJanuary 19, 2006 1:41 PM

Yeah, the Ken Thomspon compiler hack.

It didn't just insert code into login, it also inserted itself into the compiler when the compiler was recompiled.

Thus it self propagated during compilation of the compiler.

jammitJanuary 19, 2006 1:51 PM

Brain wasn't a virus, it was adware. It was an advertisement for a Pakistani computer store. Just two days ago I was tearing apart some old machines, and wanted to see what was on them. One actually had the Brain virus still on it.

AGJanuary 19, 2006 2:12 PM

I thought you got Brain.A from toilet seats?

Davi OttenheimerJanuary 19, 2006 2:45 PM

"Brain wasn't a virus, it was adware"

Is it really useful to maintain such a distinction?

KrunchJanuary 19, 2006 3:21 PM

Thompson's compiler hack is described here http://www.acm.org/classics/sep95/ but he says he first saw the idea in an earlier document (which doesn't mean it has been implemented at the time).

Anon Y. MouseJanuary 19, 2006 3:48 PM

2006 marks my 30th year since my first exposure to
computers... so I guess I'm becoming something of an
old-timer.

Anyway, what bugs me is that the technology to avoid
most, if not all, of the potential damage from virii
is about that old. It dates to the days of the
mainframe (and later the mini), when people didn't
just share the same network, but the same machine
with others of possibly malevolent intent.

Since the rise of the PC, however, all that know-how
has been ignored and forgotten.

EikeJanuary 19, 2006 4:49 PM

Mad wrote:
> That's nonsense. Everyone knows Apples don't get viruses.

Correct. Apples get worms.

forgeronJanuary 20, 2006 3:36 AM

My first pc-virus was the boot-sector mild form of ping-pong. And I remember how fun it was to remove it and restore the original boot-sector with pctools and edlin. :-)
Now things are pretty less funny, and I'm not sure I would wish it a happy birthday! ;-)

jammitJanuary 20, 2006 10:50 AM

Minor correction. It was more adware than a virus. It's funny that the first virus was to make money and not just electronic vandalism.

Taneli HuuskonenJanuary 20, 2006 11:18 AM

Sorry for the off-topic posting, but the use of "virii" instead of "viruses" is one of my pet peeves. Depending on your idea of linguistic authority, you may either compare the number of occurrences on your favourite search engine, or read the following page:

http://www.ofb.net/~jlm/virus.html

norma buhrtsJuly 11, 2007 5:11 PM

Was a moth involved in the first computer virus? in the 1960's i believe please let me know

kDMay 13, 2008 12:06 PM

IS Brain still in circulation 2008/9 under the name ashar? Although it was theoretically adware and didn't cause dammage other than on floppy/hard disks, could it have never been disabled because of the uselesnes of this virus today?

Post a comment




E-mail is optional and will not be displayed on the site.


Remember Me?


Allowed HTML: <a href="URL"> • <em> <cite> <i> • <strong> <b> • <sub> <sup> • <ul> <ol> <li> • <blockquote> <pre>

Powered by Movable Type. Photo at top by Geoffrey Stone.

Schneier.com is a personal website. Opinions expressed are not necessarily those of BT.

 
Bruce Schneier
Subscribe
Atom Feed Facebook Twitter E-Mail Newsletter (Crypto-Gram)
Subscribe via Kindle
Blog Menu

Search

Powered by DuckDuckGo


blog only
essays and op eds only
whole site

Blog Home Page
100 Latest Comments

Archives by Date

2013 J F M A M
2012 J F M A M J J A S O N D
2011 J F M A M J J A S O N D
2010 J F M A M J J A S O N D
2009 J F M A M J J A S O N D
2008 J F M A M J J A S O N D
2007 J F M A M J J A S O N D
2006 J F M A M J J A S O N D
2005 J F M A M J J A S O N D
2004 J F M A M J J A S O N D

Tags

more tags

Support Bloggers' Rights!
Defend Privacy--Support Epic
Latest Book
Liars & Outliers
more books by Bruce Schneier