Conficker's next move a mystery to researchers!!!!!

[samuelvirucide]

Hi avast forum members,
 Maybe you want to read this news update about the Conficker worm,
March 23, 2009 (Computerworld) Security researchers are in the dark about what will happen next week when the newest variant of Conficker, 2009's biggest worm by a mile, begins trying to contact its controllers. The whole article news in this Link

[CharleyO]

***

An interesting read. Thanks for the link, Samuel.   


***

[alanrf]

If "we don't know what we don't know" musters to the level of "interesting"  maybe perhaps 'worrying" - especially for those infected.

[Maxx_original]

the vulnerability was known for five months, all updates are available for a long time and many AV engines are able to remove Conficker... though we can see over 350000 unique hits every day.. i really don't understand the policy of lazy corporate admins to not install critical updates and take care and responsibility for the security rules for the whole company.. shame on them, they still provide a good environment for these nasties

[RejZoR]

I'm patching my workstation regulary (1 security update is just waiting to be installed).
They also have antivirus installed (not avast! but still ).
I've also installed Firefox Portable on it (no admin rights required ) just to be sure.
We still have IE6 installed for some reason, probably because they use propertiary interface that runs inside browser.

[YoKenny]

the vulnerability was known for five months, all updates are available for a long time and many AV engines are able to remove Conficker... though we can see over 350000 unique hits every day.. i really don't understand the policy of lazy corporate admins to not install critical updates and take care and responsibility for the security rules for the whole company.. shame on them, they still provide a good environment for these nasties

Its called Job Security.

The less work they have to do the less they are needed and in these times of financial chaos it is hard to be out of a well paying job and go back to flipping burgers or sitting at an All Night coffee take out window or joining the ranks of the unemployed looking for Salvation Army Food handouts.  

[Dwarden]

what's stops these so called security researchers to setup not just virtual system but virtual network / internet to offer Conficker all websites and IPs it want to reach with modified date to April 1 ?
that way they can easily see what it want to do at future date ...
i start to feel such 'news' are just another hyped so so news ...

[.: L' arc :.]

-= Conficker..?

-= Is it a codename of the virus maker..? codename of a spreading virus..?

[bob3160]

-= Conficker..?

-= Is it a codename of the virus maker..? codename of a spreading virus..?

Try a simple Google search and see how many hits you get

[bob3160]

I'm patching my workstation regulary (1 security update is just waiting to be installed).
They also have antivirus installed (not avast! but still ).
I've also installed Firefox Portable on it (no admin rights required ) just to be sure.
We still have IE6 installed for some reason, probably because they use propertiary interface that runs inside browser.

At home, all systems are fully updated at all times and extreme caution is used when on the internet.
At the Senior Center ( where I am now ), I've installed a program called Deep Freexze. The system restores itself to a safe controlled state each time the system is rebooted.
No record of any activity is ever saved longer than one session and is totally gone when rebooted. This includes any infection which might have occurred.

[scythe944]

I'm patching my workstation regulary (1 security update is just waiting to be installed).
They also have antivirus installed (not avast! but still ).
I've also installed Firefox Portable on it (no admin rights required ) just to be sure.
We still have IE6 installed for some reason, probably because they use propertiary interface that runs inside browser.

At home, all systems are fully updated at all times and extreme caution is used when on the internet.
At the Senior Center ( where I am now ), I've installed a program called Deep Freexze. The system restores itself to a safe controlled state each time the system is rebooted.
No record of any activity is ever saved longer than one session and is totally gone when rebooted. This includes any infection which might have occurred.

Hey Bob, isn't this pretty much the same as Microsoft's "Steady State"?  I'm sure that if you have to pay for it, it's has to be better than the free Microsoft one, right?

[bob3160]

What I like about Deep Freeze is the ability to change it's state to unfrozen then go in and do my updates and then reset it to a frozen state.
That way, I control what changes on the system.
I haven't used the Microsoft product so I can't compare the two.

[scythe944]

Gotcha. From what I have read, steady state will allow you to run updates as well, and if you're in a corporate environment with WSUS enabled, you can push updates from the WSUS server to the clients.

I understand you're already using that product, but if you wanted to try a free alternative (if you're using windows as your operating system that is), you might want to check out steady state. http://www.microsoft.com/windows/products/winfamily/sharedaccess/default.mspx