THE OVER-RATED Conflicker worm, which was supposed to mean the end of the world on April 1, has actually done something.
Apparently it has updated itself and dumped a mystery payload on infected computers, according to Trend Micro. The data package seems to be a keystroke logger and so the worm is probably after secret data.
Windows users who have not updated their computer with the latest updates are likely to be targets. µ
L'Inq
CNET
It is harvesting World of Warcraft and other MMO accounts. They access the accounts, strip off any gold or items that can be turned into gold, then sell it back to everyone buying ingame assets. It is more cost effective than hiring a bunch of sweatshop workers to do it.
The worm seams also tries to logging or access network drives but, as it doesn't have the passwords, it locks the users accounts. the company I work for had two days of locking users on the windows boxes, I was locked out 6 times!! pain in the ass
Its so silly. It doesn’t seem to do anything really. What a stupid thing for hackers to make and the press over it is INSAINE. Someone is actually trying to sell conflickerworm.org
http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=320356252264&ssPageName=ADME
PATHETIC!
Tell that to someone that's spent all week disinfecting VERY heavily infected machines - once conficker gets on there the floodgates are opened.
Count so far?
300 machines.
4 to 700 infections per machine.
Evens out at just about 17,000 infections dealt with in a week.
Conficker solely responsible.
How come those machines got infected? Isn't this a long known virus/patch, so should most IT depts have dealt with it a long time ago?
Confickr, a reason not to sack the IT dept during the recession ;-)
"@pissedoffdisinfector,
How come those machines got infected? Isn't this a long known virus/patch, so should most IT depts have dealt with it a long time ago?
Confickr, a reason not to sack the IT dept during the recession ;-)"
Exactly.
Also @pissedoffdisinfector,
I work in an environment that has 36,000 end users with machines.
36,000
None have been infected.
Gotta be PROactive, not REactive in this field, buddy.
@pissedoffdisinfector - don't forget the anti-virus developers justifying the need for bloated software that runs continuously on your machine.
I had to laugh at the douche-bag developer on CNN that was talking about how serious conflicker would be. Forget his name, some security programmer, but he was more like a fear monger/wh@re.
Conflicker is as much BS as the y2k bug was. FTW
Thank god I don't follow the news, first i heard of it. Then again, the last virus I got was Saddam back in what? 92? Nasty stuff. Don't ya all patch your machines?
WTF12345?! we spent two weeks disinfecting 1700 machines two servers, countless hours of call meetings with McAfaik and what for nothing? i could have spent those hours peeling potatos imo
You IT guys complaining about disenfecting machines is crazy. It was not hard at all to prevent this infection, properly applying Windows updates, using the malicious software removal tool and ensuring a properly updated AV would all have prevented this. If you spent the past 2 weeks cleaning up infections you should probably lose your job.
This crap was patched for in October......No excuse for leaving your enviornment vulnerable.....
In a huge organization, it's likely you'll see many external workers coming in with teir own laptops, which may be patched or not; but even if you're patched, from Conficker B you may get infected due to weak passwords, usb drives...
An IT security worker can't establish a company security policy, so he's not resosible at all for what he cannot control.
Finally, it's not so simple to get rid of Conficker as to apply a removal tool or a patch, and if the host is a server the task may be really annoying.
One more reason to run Linux or BSD or Amiga! :)