All the latest UK technology news, reviews and analysis
|
|
|
22 Sep 2009
Security experts have admitted that the Conficker worm has baffled them.
The worm has infected more than five million computers in a botnet that is powerful enough to take out the internet in Australia, according to the Sydney Morning Herald.
Rodney Joffe, a director of the Conficker Working Group formed to defeat the worm, said, "The general agreement in the security world is that Conficker is the largest threat facing us from a cyber crime point of view. It has proven to be extremely resilient. It's almost impossible to remove."
The worm, which spreads rapidly among PCs by exploiting a flaw in Microsoft Windows, first surfaced last November.
Infected PCs are dragooned into a botnet controlled by the Conficker worm's unknown authors, which security researchers fear could be used to launch cyber attacks over the internet.
Conficker has built-in mechanisms to prevent people from scanning their computers with anti-virus software. The worm also spreads without the users having to do anything other than switch on their computers.
If a network admin can disinfect 99 machines out of 100 and one is still infected, it will begin to try to reinfect the others again.
While other botnets are destroyed by disabling the command server, with Conficker the location of this server changes every day and state-of-the-art cryptography means it's almost impossible to crack.
"The best minds in the world have not managed to crack the code behind this yet," Joffe said.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
V3 examines the key strengths and weaknesses of Samsung's latest iPhone killer
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
Application Security SME, Penetration Tester / Ethical...
Java Developer Thomas Cook Online is the business unit...
Contract Systems Administrator, Southampton My...
PHP Web Developer required to join my market-leading...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
do a little research..
your comment is completely ignorant and moronic conficker doesnt use irc servers as command servers next time do a little background research before you spew out utter nonsense
Posted by: Arne S. Tinkenpiek 24 Sep 2009
Conficker hype
You claim the greatest minds can't crack this and that it's powerful enough to take down all these government websites so what makes you think a little irc server can handle so much traffic really probably after around 2500 connections it stopped accepting. Not to mention if this is so hard to crack then why do we know WHERE the bots are connecting to HOW the bots behave and yet a government agency can't take it down.
Posted by: OrderZero 22 Sep 2009