First  Prev  1  2  3  Next  Last
Conflicker just got worse.
10513 cr points
Send Message: Send PM GB Post
27 / M / In your room stea...
Offline
Posted 4/4/09

On the surface, April 1 came and went without a peep from the dreaded Conficker megaworm. But security experts see a frightening reality, one where Conficker is now more powerful and more dangerous than ever.

In the first minute of April 1, Conficker did exactly what everyone knew it was going to do: It successfully phoned home for an update. And while it was fun to imagine what nasty payload that update may have included (it was fun, wasn't it?), the result was not outwardly catastrophic; rather than a blueprint for world domination, the update contained instructions on how to dig in even deeper.

"The worm did exactly what everyone thought it was going to do, which is update itself," security expert Dan Kaminsky, who helped develop a widely-used Conficker scanner in the days leading up to April 1, told us. "The world wants there to be fireworks, or some Ebola-class, computers-exploding-all-over-the-world event or God knows what, but the reality is...the Conficker developers have cemented their ability to push updates through any fences the good guys have managed to build in February and March."

And here's why that is deeply, deeply scary. As we explained, Conficker has built a zombie botnet infrastructure by registering hundreds of spam DNS names (askcw.com.ru, and the like), which it then links up and uses as nodes for infected machines to contact for instructions. In its earlier forms, Conficker attempted to register 250 such DNS names per day. But with the third version of the software, the Conficker.c variant which has been floating around for the last month or so, the number of spam DNS takeovers was boosted to 50,000 per day—a number security pros can no longer keep up with.

What the April 1 update did was simple: It provided instructions for linking up with the thousands, perhaps tens of thousands of new nodes registered by Conficker.c over the last few weeks, effectively growing the size of the p2p botnet to a point where it can not be stopped.

"It's not about ownage, it's about continued ownage," says Kaminsky, citing a favorite quotation of one of his hacker buddies. "It's not about how you get into the network, it's about, 'How do you be [there] a year from now?'" And the answer is: "You do a lot of the things the Conficker developers are doing."

"This is not something where the guys wrote it, it's out, then they're going to go out and play Nintendo. They're frankly trying to build something that is a sustainable network for months or years to come," Kaminsky says.

Kevin Haley, director of Symantec Security Response, raises another good point: "The first [of April] would have been a pretty bad day to choose [to do something with Conficker], because everyone was watching to see what was going to happen. Whoever's behind this is as lot more patient than we are."

As far as what comes next? More waiting. Good methods now exist for detecting and cleansing Conficker from infected machines on a network (and, let's not forget, a months-old security patch from Microsoft is all you need to protect yourself), but by now the size of Conficker's infected army of nodes spread around the world is big enough to function with devastating consequences even if most PCs are secure.

So we'll just have to keep waiting to see what this thing does.


Found on digg.com
70098 cr points
Send Message: Send PM GB Post
M / Wa Wa Land
Offline
Posted 4/4/09
Scary..
The person that is making the 'worm' sure has a LOT of time. A LOT.
2665 cr points
Send Message: Send PM GB Post
25 / M / under your bed o_O
Offline
Posted 4/4/09
da hell is conflickr???
didnt read the thingyy...tooo long....
7895 cr points
Send Message: Send PM GB Post
21 / F / ~_
Offline
Posted 4/4/09

smil3es wrote:

Scary..
The person that is making the 'worm' sure has a LOT of time. A LOT.


yeah....
i wonder how it infects the computer...
i didn't read the selection...too long
Posted 4/4/09
& i thought it would be over
70098 cr points
Send Message: Send PM GB Post
M / Wa Wa Land
Offline
Posted 4/4/09


I have no Idea...

Maybe if you go into the site or download something that happens to be the worm?
18989 cr points
Send Message: Send PM GB Post
www.crunchyroll.com
Offline
Posted 4/4/09
You get conficker just by browsing through the internet, scary huh? Also, conficker isn't made just by one man. It was made by an org. Also, Confickers name is kido.a, kido.b and kido.c. Also, Use update patch from Windows. Also, Use kaspersky
7895 cr points
Send Message: Send PM GB Post
21 / F / ~_
Offline
Posted 4/4/09

smil3es wrote:



I have no Idea...

Maybe if you go into the site or download something that happens to be the worm?


nah...
i wont do that...
Posted 4/4/09
wow i didnt get any of that
7290 cr points
Send Message: Send PM GB Post
M
Offline
Posted 4/4/09
Posted 4/4/09
I go to Windows Updates everyday, just to make sure my shit it safe. My Grandmother says it's over, but it isn't, not by a long shot. Even if they were to get into my computer, we don't have anything of importance on it. No banking info, no anything.


I'm just getting really tired of this bullshit. It's like the people that created this worm don't have any lives.
507 cr points
Send Message: Send PM GB Post
Offline
Posted 4/4/09
whoever made these things are in for world domination..



cool
21223 cr points
Send Message: Send PM GB Post
Offline
Posted 4/4/09
Well, this fucking sucks.
1531 cr points
Send Message: Send PM GB Post
25 / M / The Vill
Offline
Posted 4/4/09
cant u just give us a brief summary u fckin cunt
7583 cr points
Send Message: Send PM GB Post
F
Offline
Posted 4/4/09

mystic17 wrote:

& i thought it would be over


thats what i thought too :(

First  Prev  1  2  3  Next  Last
You must be logged in to post.