The third Conficker malware variant in infected machines is set to activate April 1, says the director of threat research at CA where the malware sample first discovered last week by Symantec is being examined.
Podcast: Preparing for the next Conficker
“It’s set to go off April 1, 2009 and Conficker will generate 50,000 URLS daily,” says Don DeBolt, CA’s director of threat research. Generating that many URLs is a way to hide where it may be calling to download instructions from those who designed it to infected machines. It’s not known exactly what those instructions might be but it could involve downloading more malicious code or destroying files.
CA says it has some ideas about where Conflicker originated but isn’t discussing that at present.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (3)
What type of damage does it cause?By sO oH RiginaL on March 28, 2009, 10:45 pmWhat type of damage does it cause?
Reply | Read entire comment
The damage is unknown. Just make sure your virus protection is uBy Anonymous on March 31, 2009, 9:35 amThe damage is unknown. Just make sure your virus protection is up to date, if you are not sure, download avast. ITs ready
Reply | Read entire comment
No AV is readyBy Anonymous on March 31, 2009, 11:34 amFor the comment of "if you are not sure, download avast. ITs ready" The AV folks at any company didn't get the first infection vectors right, so I'm doubtful they...
Reply | Read entire comment
View all comments