Browse Definitions :
Definition

Conficker

What is conficker?

Conficker is a fast-spreading worm that targets a vulnerability (MS08-067) in Windows operating systems.

Also known as Downadup, Conficker was discovered in November 2008. Since that time, Conficker has infected millions of computers and established the infrastructure for a botnet.

The worm is scheduled to contact control computers and, presumably, carry out some further action on April 1. Some experts have speculated that the attackers will lease parts of the botnet to criminals who will use them for spam, identity theft, phishing exploits and other malicious activities.

Like most current malware, Conficker is a blended threat, combining features of several different approaches. Once Conficker infects a computer, it disables many security features and automatic backup settings, deletes restore points and opens connections to receive instructions from a remote computer. Once the first computer is configured, Conficker uses it to gain access to the rest of the network.

Conficker can spread by several means, copying itself to shared folders, for example, or exploiting the autorun utility for removable media. There are three variants of Conficker. Conficker C, the most recent version, exploits peer-to-peer networking capabilities to enhance its spread.

To protect your computer from Conficker, experts recommend that you:

  • Keep your system's patches up to date.
  • Maintain a good anti-virus product.
  • Disable AutoRun.
  • Use strong passwords.
  • Ensure that shared folders are secured.

 

Learn More About IT:
> Microsoft has more information about Conficker in its Malware Protection Center.
> Wikipedia maintains an entry about Conficker.
> Robert Westervelt reports on a flaw found in Conficker coding.
> Symantec offers  more information about Conficker and free removal tools.
> On CNET news, Elinor Mills writes that the 'Conficker time bomb ticks but don't expect boom.'

This was last updated in March 2009
SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • secondary storage

    Secondary storage is persistent storage for noncritical data that doesn't need to be accessed as frequently as data in primary ...

  • optical storage

    Optical storage is any storage type in which data is written and read with a laser.

  • JBOD (just a bunch of disks)

    JBOD, which stands for 'just a bunch of disks,' is a type of multilevel configuration for disks.

Close