Conficker steps into the ring with new variant
Monday, February 23, 2009
After Microsoft announced a bounty for the Conficker developers two weeks ago, it appears the people behind the worm that has devastated at least 12 million machines have released a new variant that increases its malicious potential.
Conficker B++, the name of the variant, has evolved and offers its producers a new way to communicate with the worm, which may allow them to do more damage onto infected computers.
Prior to the new variant, the worm employed an algorithm to find various rendezvous points, which use unique domain names. In response to that, Microsoft and various network security providers formed an alliance to gather as many domain names the Conficker worm may use.
However, the new variant seemingly bypasses that step with two new techniques incorporated into Conficker B++, which allows the worm to publish new code without using pre-programmed sites.
According to the report from the security organization that discovered the variant, Conficker B++ has 39 new routines with three existing subroutines modified. In time, the added elements to the worm may make domain names unnecessary for the worm.
On February 12th, Microsoft announced a $250,000 reward for any information leading to the arrest of the people responsible for Conficker.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
