Conficker D-Day Arrives; Worm Phones Home (Quietly)

I found this article on Google News today, It’s pretty interesting. If you haven’t heard, Conficker is a Worm (a type of virus that only infects unprotected PCs) that basically creates a massive “internet” network using infected computers. This could be used to farm financial info, email passwords, and other personal information. One of Confickers strong points is the ability to block users from accessing virus protections sites like McAfee.com and Microsoft.com. This is a bit of an Achilles heel though, because it makes the worm somewhat easy to detect. Anyway, Here’s the Article by Ian Paul.

 

Conficker D-Day Arrives; Worm Phones Home (Quietly)

Ian Paul

Apr 1, 2009 8:32 am

confickerThe Conficker worm today has begun to phone home for instructions but has done little else. Conficker was programmed to today begin actively visiting 500 out of 50,000 randomly generated web addresses to receive new instructions on how to behave. Conficker has begun to do this, according to security company F-Secure, but so far no doomsday scenarios have emerged.

 

confickerAmong security experts, the consensus seems to be that very little will happen today. This may be in part because of the high amount of publicity Conficker has received, but then again April 1 is not the first time Conficker has been programmed to change the way it operates. Similar trigger dates have already passed with little change, including January 1, according to according to Phil Porras, a program director with SRI International. Security experts at Symantec, the maker of Norton Antivirus, also believe the threat is overblown and says Conficker today will "start taking more steps to protect itself" and "use a communications system that is more difficult for security researchers to interrupt."

 

Technology companies and experts across the globe have been working together to halt the spread of Conficker, disrupt its communications and uncover who created the worm. Microsoft has even issued a $250,000 bounty for information leading to the arrest and conviction of Conficker's authors. Despite the security sector's best efforts, very little is known about the origins of Conficker or its purpose. Nevertheless, some breakthroughs have been achieved. On March 30, Security experts with the Honeynet Project discovered a flaw in Conficker that makes it much easier to detect infection. IBM researcher Mark Yayson also believes he has discovered a way to "detect and interrupt the program's activities," according to The New York Times.

 

Since the Conficker worm was discovered in October 2008, the malware has only received programming updates from its author and worked to infect other computers. Conficker is believed to have infected 10 million computers worldwide mostly in Asia, Europe and South America. According to IBM, only 6 percent of North American computers have been infected.

 

While today may be a non-event, Conficker could be used to create harm in the future. Possiblities include a massive botnet, which would give Conficker's authors control over millions of computers worldwide. The botnet could then be used to attack corporate or government networks, commit identity theft, or deliver massive amounts of spam. Security experts warn that all Windows users must make sure their operating system and antivirus programs are up to date with the latest patches and virus protections. So far, Windows is the only operating system known to be vulnerable to Conficker.

 

For more information on how to protect yourself consult PC World:

Conficker Set to Strike: Protect Yourself with These Tips and Tools

Protecting Against the Rampant Conficker Worm

Conficker Worm Attack Getting Worse: Here's How to Protect Yourself

 

See more like this:

8 comments:

Sophia said...

Yikes, sounds nasty. Is your mom freaked out about her new computer or is it protected?

Graydon L said...

No, only an estimated 6% of computers in North America are infected, plus we've got a pretty good anti-virus software. As long as we don't go on any infected web sites or contact any infected computers, I think she'll be good.

Plus, the more time goes by, the more people have time to disinfect their computers. The media has been really paying attention to this virus as well, raising awareness and giving a wake up call to big anti-virus companies like McAfee and Norton to make better programs. This puts the squeeze on the authors of the virus and may even make them abandon their "project".

Sorry, kind of a wordy answer :-)

Sophia said...

Yeah, that makes sense. Well, at least the media can get *some* things right; usually NOT about diseases or politics.

Graydon L said...

however unwittingly... ;-)

SamuelY said...

I don't know if it's just me, but I would like to nominate this as the Nerdiest Post of the Year!!!

Do I hear a second?

Typing from a magnificently malware-free Macintosh,

Sam

Graydon L said...

*dry laughs* ha ha.

But you are right, the Conficker virus doesn't target Macs. That's just one of many reasons I reeeeally want one.

Sophia said...

Lol, Graydon just has waaay too much time on his hands, Sam!

Graydon L said...

*more dry laughing* hardy har har
;-)

Graydon's Fav Music Playlist


Get a playlist! Standalone player Get Ringtones

Graydon's Fav Classical and Movie Soundtrack Music


Get a playlist! Standalone player Get Ringtones