iTWire - Warning: Conficker worm finally wakes up

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Warning: Conficker worm finally wakes up

Warning: Conficker worm finally wakes up

E-mail

by Davey Winder
Friday, 10 April 2009
Could the speculation surrounding the Conficker payload be coming to an end as the latest variant of the virulent worm reveals its hand in the form of links to the Waledac malware family and talk of rogue antivirus installations? For many people, admittedly much the same people who thought the world would end when we entered the year 2000 courtesy of the mythical Millennium Bug, April 1st was the day that the Conficker worm would start causing havoc. Featured Whitepaper 5 Best Practices for Smartphone Support Of course, as reported on iTWire, the predicted tech apocalypse never happened. However, we also made it clear that the chances were pretty high that a payload would be revealed before too long. Now it seems that Conficker has, indeed, revealed its hand. According to TrendLabs security researcher Ivan Macalintal, a new variant has gone live which sheds light on the payload question. The Conficker 'WORM_DOWNAD.E' variant has started spreading using the P2P functionality of existing worm infections, and has started talking to a known malware server with links to the Waledac family. This communication is done in order to download additional malicious components, and the bad news is that Waledac is widely suspected to be the current plaything of the gang that was previously behind the Storm botnet. Security specialists Trend Micro confirms that it has monitored connection attempts to a known Waledac domain in order to download encrypted files. Trend Micro says that the "Conficker botnet has awakened" and infected nodes are "pulling down new Waledac binaries" which could be used for spamming but also there has been evidence of the installation of "Fake/Rogue AntiVirus" malware as well. Interestingly, it also would appear that the latest Conficker variant issues instructions to remove itself from an infected PC on 3rd May this year. Of course, no such instruction is coded for the Waledac botnet infection. Tags See All Tags Botnets Conficker Davey Winder Malware Scareware Security Spam Spambot Worm Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

Sponsored Releases

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

User Experience Architect (C4)
Consulting Services Branch Manager
Process Analyst X 4 (M4)
Content Co-Ordinator (M3)
Senior .Net Developer (M3)
Business Analyst (M17)
Test Lead
Senior Business Analyst
Business Analyst - Financial Markets, Ops focus
Technical Business Analyst - BI & DW - Contract

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking