Conficker begins stealthy update
The Conficker worm has started to update infected machines with a mystery package of data.
Computer security firms watching the malicious program noticed that it sprang into life late on 8 April.
The activity on its update system delivered encrypted software to compromised machines. It is not yet clear what the payload contains.
The Conficker virus variants are thought to be present on millions of PCs around the world.
Spam connection
The updating activity has begun about a week later than expected. Analysis of the "C" variant of Conficker (aka Downadup) revealed that its updating mechanism was due to go live on 1 April.
The belated updates were spotted by researchers for Trend Micro following the arrival of a new file in one of the directories in so-called "honeypot" machines deliberately seeded with Conficker C.
Conficker worm
Holes in the machine
Malicious software may just be a property of the network, says regular contributor Bill Thompson
"The Conficker worm will be active again on 1 April, according to an analysis of its most recent variant, Conficker.C, by the net security firm CA.
This malicious piece of software, also known as Downup, Downadup and Kido, spreads among computers running most variants of the Windows operating system and turns them into nodes on a multi-million member "botnet" of zombie computers that can be controlled remotely by the worm's as yet unidentified authors.
Since it first appeared in October 2008 it has apparently infected more than 15 million computers around the internet, though even that number is no more than an educated guess because the worm works very hard to disguise its presence on a PC.
The worm turns
Conficker spreads through a security vulnerability in the Windows Server Service that allows a carefully written program to persuade the attacked computer to run malicious code instead of the Microsoft-written software.
Clock ticking on worm attack code
Experts are warning that hackers have yet to activate the payload of the Conficker virus.
The worm is spreading through low security networks, memory sticks, and PCs without current security updates.
The malicious program - also known as Downadup or Kido - was first discovered in October 2008.
Although the spread of the worm appears to be levelling off, there are fears someone could easily take control of any and all of the 9.5m infected PCs.
Speaking to the BBC, F-Secure's chief research officer, Mikko Hypponen, said there was still a real risk to users.
"Total infections appear to be peaking. That said, a full count is hard, because we also don't know how many machines are being cleaned. But we estimate there are still more than 9m infected PCs world wide.
Link exchange Add Site
Advertise Here
Support
Domains For Sale
Links
Services
Categories
Archives
Recent Posts
- Naruto Shippuden 508 Confirmed Spoiler
- Set Windows 7 as WiFi HotSpot
- Naruto Shippuden 507 Confirmed Spoiler
- Black Swan Trailer
- Naruto Shippuden 506 Confirmed Spoiler
- WinToFlash : Make a bootable USB installer for Windows XP, Vista, Windows 7 and more
- Naruto Shippuden 505 Confirmed Spoiler
- Naruto Shippuden 504 Confirmed Spoiler
- Dexter Season 5 Trailer
- Dexter Early Cuts: Dark Echo Trailer
Recent Comments
- Melanie on Black Swan Trailer
- M4rl on Naruto Shippuden 506 Confirmed Spoiler
- karado on WinToFlash
- RAEQuinn31 on Naruto Shippuden 506 Confirmed Spoiler
- anonymouse on Naruto Shippuden 505 Confirmed Spoiler
What I'm Doing...
- Naruto Shippuden 508 Confirmed Spoiler http://goo.gl/fb/y9neH 3 days ago
- I'm Tired. Need a nap but can't. 3 days ago
- Try to see past your uncertainty today if self-doubt creeps in... More for Libra http://twittascope.com/?sign=7 3 days ago
- Gonna wait 'til Thu to watch Weeds and True Blood. :/ 3 days ago
- Charging.. 3 days ago
- More updates...
