Web Security News

Security firms admit that Conficker worm caught them by surprise

Tuesday, November 17, 2009

The Conficker worm, currently one of the most prolific pieces of malware in the world, achieved its status in part because some of the biggest anti-virus companies in the world underestimated its staying power.

Speaking on a conference call about the firm's predictions for 2010, Symantec senior manager Orla Cox admitted that the security giant had been caught off guard by the rapid proliferation of Conficker. "We knew that the vulnerability had the potential to be used by malware, but we felt people had learned their lesson from the past," said Cox.

Conficker takes advantage of known vulnerabilities in Windows systems to implant itself into unpatched computers. Once infected, computers can be subject to all sorts of malicious manipulation, most notably becoming part of a botnet of other infected computers and used to commit large-scale DDoS or spam operations.

Security professionals emphasize that Conficker cannot infect PCs whose software is properly updated, and say that the vast number of unpatched systems was a critical factor in the rapid spread of Conficker.ADNFCR-1765-ID-19465126-ADNFCR

Related News:

Network security concerns prompt postponement of Google phones in China - 1.20.2010
The Wall Street Journal reports that Google has decided to indefinitely postpone the launch of two of its Android smartphones to the Chinese market, which pundits have taken as further proof of the growing rift between the search giant and the Chinese government.

Cloud network security concerns prompt Microsoft to propose new laws - 1.20.2010
Microsoft's general counsel, Brad Smith, told an audience at the Brookings Institution today that the government should step in to regulate the emerging cloud computing industry and help protect businesses and consumers from fraud and abuse.

Network security experts unmask command servers behind Google attack - 1.19.2010
Researchers at VeriSign's iDefense lab have published a report claiming that the Chinese government was responsible for the recent large-scale cyber attacks that targeted Google and other U.S. companies.

Out-of-band IE patch to fix widespread vulnerability - 1.19.2010
Microsoft will issue a patch to its Internet Explorer browser software before its next scheduled update, intended to fix the flaw that enabled hackers to launch a damaging cyber attack on numerous U.S. companies.

France and Germany warn citizens to avoid using Internet Explorer - 1.18.2010
The governments of both France and Germany have issued official warnings to their citizenry, saying that, until Microsoft releases a patch for the widely-used Internet Explorer web browser, it is a threat to network security and should not be used.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now