iTWire - Conficker, back with a vengeance as top worm

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Conficker, back with a vengeance as top worm

Conficker, back with a vengeance as top worm

E-mail

by Peter Dinham
Monday, 31 August 2009
The infamous Conficker worm first spread its malicious infection across the Internet more than eight years ago and just last month it shot back into prominence, infecting 43 percent of machines in use worldwide in the space of four weeks and, for good measure, it now installs rogue security software on compromised machines. Featured Whitepaper 5 Best Practices for Smartphone Support According to security firm BitDefender’s top 10 e-threats tracker list for August, once again worm-type malware dominated, with Win32.Worm.Downadup – a.k.a. Conficker or Kido – ranking first with 43 percent of the total amount of infected machines. Conficker restricts access to the websites associated with IT security vendors and now, apparently, the latest variant of the worm can install rogue security software on compromised machines. BitDefender’s report for August has Win32.Induc.A, a less common piece of malware application built with Borland (now Embarcadero) Delphi versions 4 through 7, in second place on its top-10 e-threats list. According to BitDefender, this virus does not infect binary files, but modifies the SYSCONST.PAS file, injects its malicious code and then compiles the file back. The security firm says all the applications built with the compromised compiler would then be infected with the virus, and it warns that although Win32.Induc.A has no malicious payload, its abrupt escalation in its top 10 e-threats tracker suggests that, at present, “few Delphi developers are aware of the widespread infection.” And, a file infector known as Win32.Sality.OG, grabs third spot on the list, with BitDefender reporting that the polymorphic file infector appends its encrypted code to executable files (.exe and .scr binaries), and in order to hide its presence on the infected machine it deploys a rootkit and attempts to kill antivirus applications installed locally. Meanwhile, BitDefender says that the increasing presence of the worm Worm.Autorun.VHG – now ranked fourth - reveals that users are still ignoring Microsoft’s security advisories to deploy security patches, with the Internet/network worm exploiting the Windows MS08-067 vulnerability in order to execute itself remotely using a specially crafted RPC (remote procedure call) package, an approach which the security firm says is also used by Conficker. BitDefender also warns of a high-risk infection from its fifth ranked Win32.Virtob.Gen file infector written in assembly language, which it says hides its presence by injecting hooks into other Windows processes, but avoids compromising system files, and opens a backdoor that can be exploited by a remote attacker to seize control over the infected machine. Tags See All Tags BitDefender Conficker Cyber Security Cyber attacks Cyber threats Internet Internet Security Microsoft Peter Dinham Security Viruses Web Web security Windows Worms Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

Sponsored Releases

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

User Experience Architect (C4)
Consulting Services Branch Manager
Process Analyst X 4 (M4)
Content Co-Ordinator (M3)
Senior .Net Developer (M3)
Business Analyst (M17)
Test Lead
Senior Business Analyst
Business Analyst - Financial Markets, Ops focus
Technical Business Analyst - BI & DW - Contract

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking