New Conficker B++ Worm Discovered, More Stealth
A new variant of the Conficker/Downadup worm has been detected. The worm opens a backdoor on an infected machine and allows hackers remote control of infected PCs.
Dubbed Conficker B++ (and not to be confused with Conficker B), the new variant of the worm opens a backdoor with auto-update functionality, allowing a hacker to distribute malware to infected machines.
It's difficult to know exactly how long Conficker B++ has been circulating, but researchers first noticed it on February 6 of this year. (Source: pcadvisor.co.uk)
10.5 Million Computers Infected
Machines infected by the Conficker/Downadup worm can be used to send spam, to log keystrokes or to launch denial of service (DoS) attacks, but reports suggest that for the most part, that has not been happening.
The worm spreads by exploiting a dangerous Windows bug to attack computers on a local area network and by USB devices. According to SRI International research, about 10.5 million computers have been infected with variants of Conficker. (Source: pcadvisor.co.uk)
The Technical Analysis
Conficker B++ is no longer limited to re-infection by similarly structured DLL files, but can now be pushed in new self-contained Win32 (executable) applications. These executables can infiltrate the host using methods that are not detected by the latest anti-Conficker security applications. (Source: mtc.sri.com)
Under Conficker B++, two new paths to binary validation and execution have been introduced to Conficker drones, both of which bypass the use of Internet rendezvous points, increasing the flexibility of the direct flash mechanisms which offer the ability to load digitally-signed Win32 executables directly to a Conficker host.
Microsoft Security Bulletin MS08-067 Patches Flaw
The Conficker/Downadup worm has been able to proliferate widely because many PC users have not applied the patch supplied by Microsoft. Security Bulletin MS08-067 from Microsoft patches the Windows flaw. Information that will help you find out if your computer is infected and how to fix it is available from Microsoft. (Source: microsoft.com)
Detailed information on all variants of the Conficker/Downadup worm can be found from SRI International Research.
Visit Bill's Links and More for more great tips, just like this one!
Infopackets Top Windows 10 FAQs
How to Upgrade from Windows 10 32-bit to 64-bit
How to Fix: Windows 10 Antivirus Missing, Not Compatible
How to Fix: Windows 10 Display Shifted; Screen Fuzzy
How to Upgrade Windows 7, 8 32-bit to Windows 10 64-bit
to Downgrade from Windows 10
- How to Fix: Windows 10 Upgrade Failed Error C1900208
- How to Fix: Windows 10 Upgrade Failed Error 80240020
- Can I Cancel my Windows 10 Reservation and Reserve Later?
- How to Clean Install Windows 10 using Windows 7, 8 License
- Will Windows 10 Install Automatically?
- Windows 10 Upgrade: Do I have to Reinstall Programs?
- Windows 10 Upgrade: Can I choose 32-bit or 64-bit?
- Which Version of Windows 10 Will I Get (Home or Pro)?
- How to Reserve Windows 10 Upgrade (Free)
- How to Fix: CPU Not Compatible with Windows 10 Error
- Windows 10 Upgrade: Can I keep my Old Windows Install?
- How to Cancel Windows 10 Reservation (Properly)
- Download Windows 10 .ISO (DVD) for Clean Install?
- Microsoft: Windows 10 Will Be The Last Version
- Does Windows 10 require the CPU to support PAE?
- Windows 10: Can I Upgrade or do I need a Clean Install?
Click here for more Windows 10 articles.