It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
New Conficker worm making 1million zombies a day
page: 1share:
New Conficker worm making 1million zombies a day
blogs.zdnet.com
(visit the link for the full news article)
“This malware mostly spreads within corporations but also was reported by several hundred home users. It opens a random port between port 1024 and 10000 and acts like a web server. It propagates to random computers on the network by exploiting MS08-067. Once the remote computer is exploited, that computer will download a copy of the worm via HTTP using the random port opened by the worm. The worm often uses a .JPG extension when copied over and then it is saved to the local system folder as a random named dll. It is also interesting to note that the worm patches the vulnerable API in memory so the machine will not be vulnerable anymore. It is not that the malware authors care so much about the computer as they want to make sure that other malware will not take it over too.”
Related News Links:
www.smh.com.au< br /> www.google.com
arstechnica.com
Hmmm another worm huh...how cool. Apparently its infecting 1 million PC's a day. I have heard cyber-criminals are experimenting with "new" technology.
Or is it the Anti Virus companies trying to scare us into buying their security software?
Disturbing thing is that it can hide/attach as a jpeg file.
blogs.zdnet.com
(visit the link for the full news article)
Disturbing thing is that it can hide/attach as a jpeg file.
blogs.zdnet.com
(visit the link for the full news article)
It is also interesting to note that the worm patches the vulnerable API in memory so the machine will not be vulnerable anymore.
I found that to be pretty interesting, but scary nonetheless as well - being that sooner or later another version or some different version of a virus will come about and soon infect the machine. Overall I don't know what to think of it as of yet because of that snippet from the article..
Honestly, a firewall good one like Tiny Personal Firewall pro is one of the few things that can actually protect your system.
It has multiple levels of manageable security settings, alerts for when virtually anything is happening inside of your computer, and a trust program which allows you select any kind of program running in your computer, even the ones that slip past execution and embed themselves in the kernel, the ones that hide, the ones that have no 'task' in the Task Manager, it can even stop.
Heh.......Sorry, take the hackers advice, I know how the exploits works inside an out, take a trip to www.securiteam.com... .
It has multiple levels of manageable security settings, alerts for when virtually anything is happening inside of your computer, and a trust program which allows you select any kind of program running in your computer, even the ones that slip past execution and embed themselves in the kernel, the ones that hide, the ones that have no 'task' in the Task Manager, it can even stop.
Heh.......Sorry, take the hackers advice, I know how the exploits works inside an out, take a trip to www.securiteam.com... .
Makes me wonder, if Microsoft ever got their act together and could fix Windows vulnerabilities, would they end up being sued by all the anti-virus
software companies that would end up out of business? The fact that Microsoft has been unable to fix this makes me think these holes are intentional
by design.
reply to post by Divinorumus
It is impossible to stop vulnerabilities. Unless you are strictly on a LAN and you know ever other computer around you.
There is a way in, always, and forever. Atleast in this format of crappy OSs we have running around today, Linux is the safest if you ask me
It is impossible to stop vulnerabilities. Unless you are strictly on a LAN and you know ever other computer around you.
There is a way in, always, and forever. Atleast in this format of crappy OSs we have running around today, Linux is the safest if you ask me
Originally posted by Revolution-2012
Honestly, a firewall good one like Tiny Personal Firewall pro is one of the few things that can actually protect your system.
It has multiple levels of manageable security settings, alerts for when virtually anything is happening inside of your computer, and a trust program which allows you select any kind of program running in your computer, even the ones that slip past execution and embed themselves in the kernel, the ones that hide, the ones that have no 'task' in the Task Manager, it can even stop.
Heh.......Sorry, take the hackers advice, I know how the exploits works inside an out, take a trip to www.securiteam.com... .
I heard about Tiny Personal Firewall, have tried it and was impressed. Checkpoint Zonealarm is decent too once configured correctly. Thanks for the link
reply to post by Revolution-2012
I'm gonna have to give that a try, seems a few people have had good reviews about that firewall and well I could really use a good one in this day and age.
I'm gonna have to give that a try, seems a few people have had good reviews about that firewall and well I could really use a good one in this day and age.
Yes and they use it for spam.
They have been using it for some time now.
You cant block the spam, or report the spam.
Because its coming from random emails the worm has hijacked.
Many of them government and corporate domains.
I think the people who's products are spammed, should start being arrested and jailed.
Because its impossible to stop the spammers, but the greedy people who seek them out to spam there products should be dealt with.
The usual statement on how they have not authorized such spamming of there products should not be acceptable anymore.
They have been using it for some time now.
You cant block the spam, or report the spam.
Because its coming from random emails the worm has hijacked.
Many of them government and corporate domains.
I think the people who's products are spammed, should start being arrested and jailed.
Because its impossible to stop the spammers, but the greedy people who seek them out to spam there products should be dealt with.
The usual statement on how they have not authorized such spamming of there products should not be acceptable anymore.
Think about it: Microsoft created an entire economy with their softwares! If all the bugs would suddenly be fixed we will see loads and loards of
unemployed IT people. Bugs are essential for the economy. Otherwise we would switch to Linux long time ago...
reply to post by Divinorumus
That can't be done. Blaming Microsoft is like blaming Ford because someone ran into your car.
And Microsoft did fix it, but people are not downloading the fix.
That can't be done. Blaming Microsoft is like blaming Ford because someone ran into your car.
And Microsoft did fix it, but people are not downloading the fix.
Originally posted by Revolution-2012
reply to post by Divinorumus
It is impossible to stop vulnerabilities. Unless you are strictly on a LAN and you know ever other computer around you.
There is a way in, always, and forever. Atleast in this format of crappy OSs we have running around today, Linux is the safest if you ask me
your right, even with my limited work with machine code a long time ago, the old adage still applies...if it is written, it can be broken. however a 512 or 1028 ecryption code will discourage most who do not have the time or the massive hardware requirements to break in.
Got the bug on one of my home computers don't know how. Cannot connect with MS and anytime I try to go to something via goggle I never know where
I'm going to end up. I have that computer off the network for now and will work on it some more tonight. Yes I was firewalled and have everything I
was supposed to but it got thru from somewhere. It may have been thru looking to download IE8 from an non MS site. It redirects to lots of sites but
alas no porn so it's really dull surfing in the dark.
mikell
mikell
reply to post by mikellmikell
Mikell: Get the Microsoft Windows Malicious software removal tool and copy it onto the other infected machine, it should pick it up and remove it HOPEFULLY. You may need to reboot in Safemode first.
www.microsoft.com...
hope this helps.
Mikell: Get the Microsoft Windows Malicious software removal tool and copy it onto the other infected machine, it should pick it up and remove it HOPEFULLY. You may need to reboot in Safemode first.
www.microsoft.com...
hope this helps.
Makes me think I should probably format my laptop HDD soon, i'll never pay for an anti virus program, there are enough free programs out there to do
the job, i have 3 anti spyware progs running, 2 silent ones and 1 active one.
Also have an Avira antivirus running.
Still, visiting dodgy porn sites always causes problems
[edit on 21-1-2009 by Gears Of War]
Also have an Avira antivirus running.
Still, visiting dodgy porn sites always causes problems
[edit on 21-1-2009 by Gears Of War]
Couldn't get to any MS sites it would re direct me into who knows whewe. Finally e mailed myself the links and that seemed to work as a go around.
Scanned 3 times and am still picking things up. Updates from all virus protection and MS are automatic so I'm not really sure where it came from.
Portable drive may have it but not going to plug it in till I get my main machine clean. Changed my update time to the morning while I'm at work. I
usually shut the modem off at night and while at work but will tru something different. 7 AM updates from now on
mikell
mikell
Originally posted by MASH_DADDY
Originally posted by Revolution-2012
Honestly, a firewall good one like Tiny Personal Firewall pro is one of the few things that can actually protect your system.
It has multiple levels of manageable security settings, alerts for when virtually anything is happening inside of your computer, and a trust program which allows you select any kind of program running in your computer, even the ones that slip past execution and embed themselves in the kernel, the ones that hide, the ones that have no 'task' in the Task Manager, it can even stop.
Heh.......Sorry, take the hackers advice, I know how the exploits works inside an out, take a trip to www.securiteam.com... .
I heard about Tiny Personal Firewall, have tried it and was impressed. Checkpoint Zonealarm is decent too once configured correctly. Thanks for the link
I use Comodo Firewall, and have never had any problems.
Originally posted by MASH_DADDY
Disturbing thing is that it can hide/attach as a jpeg file.
Steganography has been used for a long time, I do not find that surprising at all.
The perfect way to cure any infection of a worm is to reformat your hard drive and reinstall windows. If you have your data backed up on another
drive, this process does not set you back much, only about an hour and a half or so. Also if you turn off your router when you are not using it it
will prevent data from broadcasting when you are not using it.
There is a history of 'benevolent' viruses, i.e., viruses that were meant to repair a security vulnerability or destroy another virus.
Since I didn't see any specific information about the worms payload, I wouldn't be quick to jump to conclusions.
Probably another spam bot net, but it would be pretty easy to see a benevolent virus on such a huge scale, and could set a new precedent in the world of network security. New questions would have to be asked when judging the crimes of a virus' author.
Since I didn't see any specific information about the worms payload, I wouldn't be quick to jump to conclusions.
Probably another spam bot net, but it would be pretty easy to see a benevolent virus on such a huge scale, and could set a new precedent in the world of network security. New questions would have to be asked when judging the crimes of a virus' author.
new topics
-
The Good News According to Jesus - Episode 1
Religion, Faith, And Theology: 1 hours ago -
HORRIBLE !! Russian Soldier Drinking Own Urine To Survive In Battle
World War Three: 3 hours ago -
Bobiverse
Fantasy & Science Fiction: 6 hours ago -
Florida man's trip overseas ends in shock over $143,000 T-Mobile phone bill
Social Issues and Civil Unrest: 6 hours ago -
Former Labour minister Frank Field dies aged 81
People: 8 hours ago -
SETI chief says US has no evidence for alien technology. 'And we never have'
Aliens and UFOs: 10 hours ago
top topics
-
President BIDEN Vows to Make Americans Pay More Federal Taxes in 2025 - Political Suicide.
2024 Elections: 15 hours ago, 18 flags -
Florida man's trip overseas ends in shock over $143,000 T-Mobile phone bill
Social Issues and Civil Unrest: 6 hours ago, 8 flags -
SETI chief says US has no evidence for alien technology. 'And we never have'
Aliens and UFOs: 10 hours ago, 7 flags -
Former Labour minister Frank Field dies aged 81
People: 8 hours ago, 4 flags -
Ode to Artemis
General Chit Chat: 16 hours ago, 3 flags -
This is our Story
General Entertainment: 13 hours ago, 3 flags -
Bobiverse
Fantasy & Science Fiction: 6 hours ago, 3 flags -
HORRIBLE !! Russian Soldier Drinking Own Urine To Survive In Battle
World War Three: 3 hours ago, 1 flags -
The Good News According to Jesus - Episode 1
Religion, Faith, And Theology: 1 hours ago, 0 flags
active topics
-
Bobiverse
Fantasy & Science Fiction • 2 • : Springbok -
President BIDEN Vows to Make Americans Pay More Federal Taxes in 2025 - Political Suicide.
2024 Elections • 75 • : FlyersFan -
The Good News According to Jesus - Episode 1
Religion, Faith, And Theology • 1 • : andy06shake -
HORRIBLE !! Russian Soldier Drinking Own Urine To Survive In Battle
World War Three • 18 • : watchitburn -
Florida man's trip overseas ends in shock over $143,000 T-Mobile phone bill
Social Issues and Civil Unrest • 13 • : Consvoli -
British TV Presenter Refuses To Use Guest's Preferred Pronouns
Education and Media • 137 • : Annee -
Remember These Attacks When President Trump 2.0 Retribution-Justice Commences.
2024 Elections • 54 • : Asher47 -
LaBTop is back at last.
Introductions • 15 • : LaBTopOld -
Russia Ukraine Update Thread - part 3
World War Three • 5727 • : YourFaceAgain -
So this is what Hamas considers 'freedom fighting' ...
War On Terrorism • 259 • : SourGrapes