Best offers
Exclusive Interview: Nvidia's Ian Buck Talks GPGPU
With Snow Leopard and Windows 7 both offering GPGPU capabilities, we wanted to talk to Nvidia's Ian Buck. Not only is he one of the fathers of Brook, the programming language ultimately adopted by AMD/ATI, but the head of Nvidia's CUDA group as well. Read More
-
Beamforming: The Best WiFi You’ve Never Seen
Forget 802.11n Draft 2.0. The future of video-capable WiFi depends on a signal-boosting technique called beamforming. We put the pioneers in this frontier through some real-world testing to find out which technology is going to change the wireless world. Read More
-
Exclusive Interview: Going Three Levels Beyond Kernel Rootkits
Today we have the pleasure of chatting with Joanna Rutkowska, one of the top computing security innovators in the world. She is the founder and CEO of Invisible Things Lab (ITL), a boutique computer security consulting and research firm. Read More
Partners
The Games selection
adventure :
Ray
Adventure game, South Park style. Pick the way the story goes by picking an answer among those offered.
|
violent :
Interactive Buddy
Unwind on your interactive buddy: Do anything you want to him, it will earn you money, and you can buy other stuff to torture him with.
|
Sponsored links
Reports: Conficker From China, Easily Detected
Next news- Email |
- Print |
- Comments (26) |
- Share
With April 1 drawing nearer, the Conficker fear has really started to set in. As security experts endeavor to reveal the origin of the virus, others are trying to figure out a method to detect the virus and neutralize the sense of impending doom.
As of Monday, it looks like there’s progress on both fronts. According to the Register, experts have discovered that the malware leaves a fingerprint on machines which is easy to detect using off-the-shelf scanners. While previous methods of detecting the virus have been extremely arduous, this discovery means that admins now have easy-to-use use tools with which to identify infected machines in their networks. The Reg goes on to report that as of mid-Monday, signatures will be available for at least six network scanners, including the Nmap, McAfee's Foundstone Enterprise and Nessus.
Meanwhile, back at the ranch, those desperately seeking information about the virus or where it came from also seem to be making headway. CNet reports that in response to Microsoft’s offer of a bounty amounting to $250,000 for information leading to an arrest, personnel at BKIS, a Vietnamese security firm that makes the BKAV antivirus software, said Monday that they found clues that the virus may have originated from China. Previous reports speculated that the virus came from Russia or Europe.
With over ten million PCs infected, the Conficker worm is supposedly lying dormant awaiting further instructions. Both F-Secure and Sophos say that although the Conficker worm will do something on April 1, triggering a global virus attack is highly unlikely. In fact, the worm will merely contact its growing network to receive updates, perhaps even change its operation.
"So far, Conficker has been polling 250 different domain names every day to download and run an update program. On April 1st, the latest version of Conficker will start to poll 500 out of 50,000 domains a day to do the same thing," said F-Secure.
The security firm also said that the latest version is not the most common Conficker worm. In fact, most of the contaminated machines are infected with the B variant that became widespread back in January. According to F-Secure, the B variant will not be updating on April 1, however the new variant might do something new.
"We know this because we have reverse engineered the worm code and can see that this is what it has been programmed to do," F-Secure added.
With the level of panic flying around at the moment we’re more inclined to believe that the panic itself is more contagious or dangerous than the worm. For now, we’ll treat it seriously but not take it seriously. Expect the best but prepare for the worst, and all that.
Source : Tom's Hardware US
This is gonna be epic. LOl
What? From China? No way...
Can some one link how i would know if i have the virus installed or not? Does anyone kow if NOD32 is capable in detecting the virus?
Can some one link how i would know if i have the virus installed or not? Does anyone kow if NOD32 is capable in detecting the virus?
have no idea... it should be, because it's a good way for anti-virus vendors to prove that they are good and that they can protect you from it. nod32 has a good reputation so it's in their interest to keep it and to get a signature done asap.
Any up-to-date AV scanner will be about to detect ver B without any issue.
The newest one is being update atm. So just keep checking your AV scanner.
but seriously speaking, I have no pity to whoever gets hit by this, it was using an old ass "exploit" to get people infected, so yeah its for people thats too retarded to update their systems ... hahaha. My friend's sister got hit, and I was laughing my ass off. Since she tries to blame me for the infection when I never even touched her comp, suck it bitch.
Well, I have used these Conficker news as an excuse to finaly do some updating in our small company.. I spent all day bringing some older computers up to XP SP3+all patches, not to mention an old server from Windows 2000 to Server 2003 SP2 and stuff like that.. I still have a lot of work for tomorrow, but something bad for somthing good, eh? At least after I'm done I'll know that all computers in the network are on the same level of in(security) and updated as they should be
and if that stopped any malicious operations, than all the better
sry guys to ask this question, but does anyone knows if the conflicker can hijack microsoft outlook 2003 ?
thanks for the reply
We started forwarding to opendns for external dns lookups at the office. Some people love opendns, some hate it...
I'm on the fence myself, and we may go back to using root servers later, but opendns has (bought, or otherwise) the list of control domains for conflicker, and will tell us if our network starts making requests to look the control domains up.
In two days...it begins...
Who is panicking?
OMG it's the 2000 bug all over again!
Settle down, update your unit and go check out the porn as usual.
so... can't they shut down the domains that it's coming from>? or do they need some sort of warrant?
The next person to get any kind of malware from internet surfing on my network is going to get put on a tight leash... seriously, nobody is giving you a free Iphone, why would you click on such a thing?
April 1st: Chinese virus blocks all porn in the US.
April 2nd: WW III
April 3rd: The human race ends.
where can i get it to give to my friends, remember, sharing is caring, LOL
This Conficker worm is the most exiting piece of malware on the PC for quite some time now, i eagerly await seeing what it really does.
I agree tipoo. Likely harmless, but its been interesting anyways.
My father got scared.
If Kary is right... I'll be on the front line myself with a rifle... gimme back my porn!
Set your computer's date to April 1st and see what happens.
Set your computer's date to April 1st and see what happens.
HAHA. Its one of those things where in theory it shouldn't do anything, but would be really funny to do.
I would also laugh if someone did that, and the entire worm thing got confused, and could no longer figure out what to do.
Setting to April first.
Guess I should get a infected computer first. ha
My father's laptop should do.
Jane, you are constantly referencing a web-site, then providing no link to the article in question.
I have linked this article back to the Register for comment, as I could find nothing on their web-site that seems to match the information that you have provided.
Hi Croc,
Thanks for your feedback. I'll make sure I continue to link.
There's a link in the first paragraph of the post for the Reg article (I hyper linked "register,") but here you go, http://www.channelregister.co.uk/2 [...] discovery/ just in case.
J.
1 more day, folks! I for one am exited, this is the first worm in quite a bit of time to gather so much attention!
Right now there are probably a million freaked out people clicking on those "virus cleaner" links that are really malware sites infecting more people than ever before. GG.
Right now there are probably a million freaked out people clicking on those "virus cleaner" links that are really malware sites infecting more people than ever before. GG.
or 50 Million... Average Joe thinks Virus' are CRAZY and destroy your machine, lol.
I have had a few poeple @ work ask me what i think already, because they are concerned.
As a resident of Michigan, I feel obliged to fill you all in. Rumor has it that this Conficker worm was released by Obama and GM so that as the government gives a failing corporation more tax payer dollars we will be worried about drastically more important, life-giving personal computers instead.