New variant of Conficker worm circulates
A new variant of the Conficker Internet worm is circulating that opens up a backdoor that could allow an attacker to distribute malware to infected machines, the US-CERT organization warned on Monday.
The new Conficker/Downadup worm, dubbed "Conficker B++," uses a new backdoor with "auto-update" functionality, CERT said in an advisory.
Microsoft says there is no indication that systems infected with previous variants of Conficker can automatically be re-infected with the new variant, CERT said.
Previous versions of Conficker took action to prevent further exploitation of the vulnerability, Microsoft said in an advisory of its own.
"We've discovered that the new variant no longer patches netapi32.dll against all attempts to exploit it. Instead it now checks for a specific pattern in the incoming shellcode and for a URL to an updated payload," said Microsoft, which is offering a $250,000 reward to stop the Conficker worm. "The payload only executes if it is successfully validated by the malware. However, there doesn't appear to be an easy way for the authors to upgrade the existing Conficker network to the new variant."
The worm, which has been around since last year, spreads through a hole in Windows systems, exploiting a vulnerability that Microsoft patched in October.
Conficker also spreads via removable storage devices like USB drives, and network shares by guessing passwords and user names.
Meanwhile, the previous versions of Conficker have been busy. Conficker.A has affected more than 4.7 million IP addresses, while its successor, Conficker.B, has affected 6.7 million IP addresses, with infected hosts totaling fewer than 4 million computers for both, according to a technical report by SRI International.
Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor. 
6.7 million infected is a lot but not nearly as bad in the late 90s.
So let's see the NEW cost of a PC laptop with 1280x800 res:
$650 sticker
$100 add functionality like webcam/bluetooth
$300 OS upgrade that supports all your RAM
$200 MS office
$150 Internet security (over three year ownership)
$100 replace damaged parts
$200 data/privacy loss from conficker and other viruses/spyware despite internet security or when your computer falls and the HD is running
=$1700.
Cost of owning a MacBook with 1280x800 resolution:
$1000 sticker price
$70 iWork
$30 RAM upgrade
=$1100
USE VISTA!!!!!!!!!
$650 sticker
=$650.
Cost of owning a MacBook with 1280x800 resolution:
$650 sticker price
$350 Apple tax
$30 RAM upgrade
=$1030
I can use Open Office, and any 4GB ram computer comes with Vista SP1 64bit.
I don't need or use a webcam, and I can use the USB bluetooth I already had ($20)
I could use Avira AntiVir.
Macs also have failing HDs.
I also still have an external HD to backup onto.
Enjoy your rich life while I enjoy my not-so-rich one.
Oh wait, can't afford one >.>
I do love my Ubuntu.
Oh wait, haven't convinced myself to switch.
I do love Avira antivirus !!
- by illmaticscripts April 13, 2009 9:23 AM PDT
- <embed src="http://i.ehow.com/images/widget/rss.swf?feed=http%3a%2f%2fwww.ehow.com%2fWidgetRss.aspx%3fuserId%3d9052aee7-f8bd-4683-8873-fdb6b9319f8a" width="300" height="450" allowScriptAccess="always" type="application/x-shockwave-flash"/><br><a href="http://www.ehow.com/videos.html" target="_blank">How to Videos</a> & Articles: eHow.com
- Like this Reply to this comment
-
(6 Comments)