Is Conficker Solved?
Researchers working over the weekend say that they believe they’ve found a fingerprint for the “Conficker” worm that is expected to strike on April 1. A proof-of-concept scanner has already been released. Researcher Dan Kaminsky, working with the Honeynet Project’s Tillmann Werner and Felix Lede, announced Monday that the trio have discovered a means of determining how an infected machine can be identified on a network. Credit was also given to Securosis’ Rich Mogull and the multivendor Conficker Working Group. “What we’ve found is pretty cool: Conficker actually changes what Windows looks like on the network, and this change can be detected remotely, anonymously, and very, very quickly,” Kaminsky announced on his blog on Monday. “You can literally ask a server if it’s infected with Conficker, and it will tell you.” The signature file should add a greater degree of certainty for system admins, who will be forced to wait until April 1 to see what, if anything, the Conficker or Downadup
Related Questions
- After SalesDesktop first synchronization I got duplicates for all my business contacts. What is the reason for this, and how can this problem be solved?
- We have periodical connection problems with a counter party that can be solved by restarting the Messenger. What is the reason for it?
- What problems can be solved with Advanced Modem Data Logger?
