Creator of the Conficker have updated the worm for security vendors who are working hard to stop the spread and threat of the worm program. After Conficker.B, now has been attend the Conficker.C that able to shutdown security services, blocking computer from website connection and download a Trojan.According to Ben Greenbaum, senior manager of Symantec Security Response, Conficker.C also programmed to launch connections in a different 50,000 domain to receive the update copy or other malware, that is 250 domain in one day, like previous Conficker version. That Conficker.C code writers are increasingly themselves strengthen in collecting the infected computer, and in the same time they also try to strengthen their ability to control the infected machine to download 50,000 more domains, Greenbaum added.
The merger company is called "Cabal", including of Microsoft, Symantec, and domain registration provider, has been trying to eradicate Conficker with pre-registration and lock the domain name that has been used by worm to distributing worm updates.
Worm Conficker or Kido or Downadup, was first detected in November and has been trusted infect more than 10,000 computer. The second variant of Conficker, i.e Conficker.B, has been detected last month. The ability of Conficker.B is spread via network shares and via removable media, such as flash disk through the Windows Autorun function. For that, users can apply the patch from Microsoft and update antivirus software, and this week Enigma Software Group and BitDefender has announced the removal tool Conficker.
No comments:
Post a Comment