Skip to main content
Hackers update Conficker worm, evade countermeasures
March 8, 2009 (Computerworld) Computers infected with the Conficker warm are being updated with a new variant that sidesteps an industry effort to sever the link between the worm and its hacker controllers, researchers at Symantec Corp. said Friday. The new version, dubbed Conficker.c, represents the first set of "orders" that researchers have witnessed being sent to infected systems, said Vincent Weafer, vice president of Symantec's security response group. The update shows that the hackers want to defend their collection of compromised PCs, Weafer argued. Conficker, which is also known as "Downadup," gained notoriety earlier this year when it spread to millions of machines by exploiting a vulnerability that Microsoft Corp. patched with an emergency update in October 2008. Last month, about 20 technology companies and organizations, including Microsoft, Symantec, VeriSign and ICANN, the nonprofit group that manages the Internet Domain Name System, joined forces to preemptively register the Internet addresses that Conficker's controllers use to maintain their hold on infected machines. Conficker.c is designed to thwart that work, Weafer acknowledged. While earlier versions of the worm generate a list of 250 possible domains each day that can be used to route instructions from hackers, the new edition cranks out a list of 50,000 URLs. "Conficker.c makes it even more difficult for us," Weafer said, referring to the work of the so-called "Conficker cabal" in registering the worm's routing domains. "The sheer volume that would have to be registered would be very challenging," he said, adding that it would "probably not be feasible" to even attempt to register 50,000 domains daily. The update also beefs up Conficker's defenses against eradication. "It's turning off a variety of security services," Weafer said, as well as tools often used by security companies to dig into malware. On the bright side, Weafer said that the number of PCs infected with Conficker has peaked, with estimates now in the hundreds of thousands rather than millions. "The number of infected machines is constantly dropping, so we're dealing with a much smaller pool [of devices] that are potentially getting this update," Weafer said. And although the cabal's work preemptively registering domains may be coming to a close, Weafer said it was the right move at the time. "The consortium was one mitigation among [others], but before the availability of removal tools, we thought it was the strongest solution," he said. "Now, it will probably become a lesser part." Other actions that have been taken to stifle Conficker include a $250,000 reward that Microsoft has offered for information that leads to the arrest and conviction of the worm's makers. Users can protect themselves from the worm by installing Microsoft's MS08-067 security update, using strong passwords and disabling Windows' Autoplay and Autorun features. From : http://www.computerworld.com

Popular posts from this blog

Dialogue with Cardinal Jean-Louis Tauran and Abdurrahman Wahid

It's Just Not War, But Also Security Justice Jakarta-thewahidinstitute.org. When explaining the role of Indonesia as a moderate Muslim world axis, KH. Abdurrahman Wahid alias Gus Dur talked a lot about pace NU, the largest religious organization Fatherland, in the basic formation of the Indonesian state. Former Chairman of the NU was also told how the NU and national figures in the early days of independence membincang Islam and national issues in a serious and profound. Discussions took place between Haji Oemar Sahid Tjokroaminoto and two cousins KH and KH Hasyim Ash'ari A Wahab Chasbullah, two of the NU. These discussions usually take place Bakda Noon and end before sunset. Besides the three, Sukarno, later became Indonesia's first president and also Kung Sahid law, is also involved in it. In NU Congress in 1935 in Banjarmasin, NU held that no duty of Muslims to establish an Islamic state. This attitude was later strengthened Proklamsi formulation of Pancasila an...

Taman Bunga Celosia (Celosia Flower Garden) Semarang, Center Java

This flower garden, which is located in Bandungan, is open at 09.00-16.00 WIB with various entrance tickets, ranging from Rp. 20,000 – Rp. 40,000. In this garden, you will be treated to a variety of flower views, from celosia, hebras, lavender, diantus, gerbera, chrysanthemum and many more. Besides flowers, there are miniature landmarks from various countries such as the Eiffel tower from Paris, France or the Windmill from the Netherlands. Not only that, there are many interesting photo spots that are instagramable. For those of you who bring small children, don't worry, in this tourist area there are children's playgrounds. Even when you go home later, you can at the same time buy souvenirs in the form of flower seeds with various types. Article Source from kotomonodotco: 22 Hits and Latest Tourist Places in Semarang 2022 https://kotomono.co/?p=11337
Making money consciously Contributing social value is the primary strategy for making money consciously, but by itself it’s still not enough. The problem with social value is that your personal values won’t perfectly align with the social consensus. I’m sure that if everyone on earth were like you, the demand for certain products and services would shift dramatically. For example, if everyone were like me, fresh fruits and vegetables would have even higher social value, while factory farming would have none whatsoever.When you attempt to provide social value without achieving congruence with your personal values, your motivation will be very weak. You won’t be inspired because you’ll be doing what you feel you should do, but not what you want to do. I often see this happen with people who jump into blogging on a topic they think will make them a lot of money, only to give up after a few months because they can’t stomach it any longer. Please don’t do this to yourself.Alternatively, wh...