Don't Panic on Conficker and April 1

Satheesh C B | Tuesday, March 31, 2009 | 3 comments

Despite security analysts insisting that April 1 is only a red herring, the Conficker malware hype keeps growing as April Fools' Day approaches.The worm first appeared in late November, exploiting a vulnerability in Microsoft Windows to spread unhindered on local area networks.

 

Its goal is to install rogue software on infected computers. Microsoft issued a patch for the vulnerability, but users that haven't installed it are open for infection as the worm spreads through portable USB flash drives.Conficker could give a hacker unrestricted access to every infected machine on the planet.

conficker_final_msrt_microsoftCourtesy:ZdNet

 

Once installed, Conficker.C implements a variety of nasty behaviors. The worm will attempt to disable Windows Automatic Update and stop access to the Windows Security Center, can detect and kill SysInternals' Process Explorer program, and will interfere with the operation of a number of other search-and-destroy programs including WireShark and SysClean.

 

As the speculation grows around Conficker, also known as the Downadup worm, Symantec and its Conficker Working Group partners continue researching the possibilities of the April 1 fallout from a worm that wreaked havoc on millions of computers earlier this year. So far, Symantec has determined three facts that it is sharing.

 

  1. Symantec has determined that on April 1, W32.Downadup.C, the most recent variant of the malware also known as Conficker, will begin to use a new algorithm to determine what domains to contact. No other actions have been identified to take place on April 1.
  2. Symantec said it's possible that systems infected with W32.Downadup.C will be updated with a newer version of the malware on April 1 by contacting domains on the new domain list. However, the security company noted, these systems could be updated on any date before or after April 1, as well by using the peer-to-peer updating method found in W32.Downadup.C.
  3. Symantec said, the public should not be alarmed. However, as always, computer users should exercise caution and implement security best practices into their daily computing routines.

The worm certainly is an issue of concern, but the probability of a major Downadup-related cyber event on April 1 is not likely, according to Vincent Weafer, vice president of Symantec Security Response

 

Not only at this point, you should be  always  vigilant   about protecting your PC: Patch Windows completely through Windows Update and update your anti-malware software as well. Make sure your antivirus software is actually running too, as Conficker may have disabled it.

 

Protecting PCs from Conficker

Read more:-

Also read this post from   SparksSpace

Protecting Against the Rampant Conficker Worm

Category: ,

Welcome to SparksSpace . This blog launched on Dec 2007 with a focus on Technology.You can find latest Computer Software, Tutorials, Tricks,Tips & Software promotions here!

3 comments:

  1. ironically, even if someone used Conficker to steal my credit card info, there wouldn't be any credit there for them to exploit or spend

    ReplyDelete
  2. i was searching for an article about the conficker worm than ku

    ReplyDelete