BEWARE new version of conficker worm ready to strike on april 1st

[3vmike]

Those are quite possibly some of the worst arguments against OSX I have ever read.

Why can't we all just get along. We're all browsing the same internet you know.

[Swathe]

I hate mac fan boyism but i hate uninformed mac bashing too. mac and NIX get hated on so much it really pisses me off. There is only one reason to keep windows as your home os and that is gaming. Period.

[h3%5kr3w]

I will have to say that this article was so full of fail-flakes, it was bursting at the seams, but there was one comment that was so full of fail it completely exploded open and slapped me silly...

Mac owners will have to wait until later this year for a new version of Office, and even then it will be largely devoid of the well-received Ribbon interface that Microsoft first introduced into the PC version in January.

notice "well-recieved Ribbon interface" WTF?! ok. POLL!!! who the hell thought the so called "ribbon interface" of office was good... anybody? b.s.

The ribbon interface is for soccer-moms to tinker with that looks like an old adobe home printing suite. NOT for the business office where people want software that CONFORMS to a standard that has always been 'well recieved'. tho hence, that's why I roll with Open Office :D

oh, and also since mac office does not have the 'well recieved' interface, good goin! seems microsoft listens to SOMEBODY.

[DingleBerries]

Lets make a group and fag to mac hating!

[Mark Manching]

Another News Update about conflicker

New homeland security tool to detect Conficker worm

WASHINGTON (AFP) - - The US Department of Homeland Security released a tool on Monday to detect whether a computer is infected by the Conficker worm.

The department, in a statement, said the detection tool for the Conficker worm, also known as DownAdUP, had been developed by the US Computer Emergency Readiness Team (US-CERT).

"While tools have existed for individual users, this is the only free tool -- and the most comprehensive one -- available for enterprises like federal and state government and private sector networks to determine the extent to which their systems are infected by this worm," said US-CERT director Mischel Kwon.

"Our experts at US-CERT are working around the clock to increase our capabilities to address the cyber risk to our nation's critical networks and systems, both from this threat and all others," he added.

The worm is suspected to have infected million of computers running the Windows operating system and Windows maker Microsoft has offered a 250,000 dollar bounty for those responsible for the worm.

US-CERT recommended that Windows users apply Microsoft security patch MS08-067 to help provide protection against the worm.

The patch is designed to prevent an attacker from remotely taking control of an infected computer system and installing additional malicious software.

Malware could be triggered to steal data, generate spam attacks or turn control of infected computers over to hackers amassing "zombie" machines into "botnet" armies.

The worm is programmed to modify itself on Wednesday, April Fool's Day, according to computer security specialists.

Conficker had been programmed to reach out to 250 websites daily to download commands from its masters, they said, but on Wednesday it will begin connecting with 50,000 websites daily for instructions.

The hackers behind the worm have yet to give it any specific orders.

"That's the interesting thing. The only thing the worm is being asked to do is to ask for further instructions," Steve Trilling, vice president of security firm Symantec, told the CBS program "60 Minutes" in a story aired on Sunday.

Source: http://ph.news.yahoo.com/afp/20090329/ttc-...ic-0de2eff.html

Are You Ready for the new virus?

[VaKo]

Yes, just update your bloody computer and use AV, you will be fine. This isn't anything other than an example of stupid people not maintaining there systems.

[Mark Manching]

Yes, just update your bloody computer and use AV, you will be fine. This isn't anything other than an example of stupid people not maintaining there systems.

Yes! Locked and Loaded

check your programs, do backup your important files, patch your system, install all your security programs, don't installed pirated softwares/games too

Good Luck to all!

[cdoublejj]

shit i have like 7 of them to update plus grandparents aren't computer smart..... guess i'll just lay in bed and maybe not care.

oh btw the way i see it win dominates for gaming and biggest library of apps/games

macs are great for net and all around use other than gaming with exception to what is in it's game library

linux is very versatile and secure but also has limited game library

both nix and make have win emulators

[VaKo]

Windows is what most people have, and as a result the majority of the platform users have absolutely no idea what they are doing. The majority of *nix users tend to know the platform far more intimately than others because its complex and the only way you can use it is to know what your doing. Right from having to download and burn and iso, through to installing it and installing your applications you will need to know more than the average windows user needs in a year of operation.

As for Macs, macs aren't computers and apple doesn't sell them, Apple sell products so you get a box that turns on and does everything from the get-go. This suits proffesionals who don't buy computers, they buy a machine for photoshop or pro-tools, and it suits moneyed windows users who don't care what they are using as long as they can facebook, im and so-forth with as little hassle as possible.

As geeks we know we can hack all of these platforms to do anything we can imagine, so OS wars should be moot.

[shonen]

windows users who don't care what they are using as long as they can facebook

I lol'd hard! I was warning a friend of mine to patch, download av updates for her windows box to prepair for conficker, once she got it all done she asked me what does it do? ZOMG it better not touch my facebook!

*shakes head* Facebook is evil and reduce's normal people to dead set fuck tards.

Great comment Vako, as always you never let me down in the comical department *tips hat*.

[Deveant]

Currently 1:24AM 01/04/09

No signs of Conficker. I guess ill wait till its 01 in the US.

[digip]

I hate mac fan boyism but i hate uninformed mac bashing too. mac and NIX get hated on so much it really pisses me off. There is only one reason to keep windows as your home os and that is gaming. Period.

Um, thats a bit of bashing in itself, isn't it? ;)

I do all my artwork, photo editing, web design, video, etc, on the pc. And I only play like a few games on the pc, most of which are either roms of old console games for the NES and SNES or FPS's like Warsow and UT99. I have an ubuntu desktop and a few linux vm's like Backtrack and such, but I really don't care for MAC's myself. Just my opinion. If I bought a MAC I would end up using it for what I already do on the PC. Photoshop, Movies, etc, I do on my main desktop and laptop. I just can't see paying more for a MAC to do the same things I already do on my PC. Also, how many programs out there run on MAC's vs Windows machines(natviely, not with a hyper visor or VM)? People write more software for PC's because of the wider user base and compatible hardware. Another reason people don't buy MAC's is because in order to work with their pc files, they need to either find a MAC alternative program or derviative, or install a VM and run windows inside it anyway, defeating the purpose of a MAC.

Use what you like, but the argument against any OS is just old and tired. There is no end all be all OS any more. Blur the lines, mix it up a little, play with them all, and use what you feel comfortable with to get the job done. In my case, it just happens to be Windows XP.

[digip]

Locate Conficker with a Network scan: http://isc.sans.org/diary.html?storyid=6097

[h3%5kr3w]

ok. So I watched the ep. where matt setup a vm in a closed environment and setup a virus on it and monitored it. I want to do the same thing but with conficker c. So I have been looking everywhere but cant find it, so does anyone know where I can point this poor little unpatched XPsp2 vm to get it?

I want to examine what will happen when I do a time change on the machine (like tonight @ 11:55pm) and watch it work it's magic. I'm just curious, and find it interesting to see if it goes out to the web to find the time, or if it just uses the system time or what.

BTW! I got my windows vista and xp machines fully patched and running avast, with all updates :D

[DingleBerries]

For all of your malware related needs go to http://www.offensivecomputing.net/

BE WARNED all of those are real viruses so be sure its on a vm or an isolated network.. Also conficker C can tell if its running in a VM and will modify its behaviour as such

[Sparda]

I would like to see it do some thing so bad that I have a good excuse to go in the the server room (after the 'accident') and start pulling random cables out of the wall until the internet stops working. Very Boris Grishenko, any other way would not be adequate.

Despite our best efforts (Domain says "Firewall on = yes, filesharing = off", anti virus auto update forced on by policy) there are going to be a few infected machines.

[nullArray]

Has anyone mentioned the logistics behind the april 1st date?

I got this idea from someone else, but I think conficker is a brilliant investment. Tons of infected machines, but nothing nasty happening yet?, why? Because whoever designed this, probably sold the payload to the highest bidder..., make sense?

Blackmarket stuff..., scarrryy.

[h3%5kr3w]

damn.. well that totally blows. These people thought of everything when making this damn malware....

But when you say it modifies it's behavior... does that mean it changes it's behavior to more efficiently infect virtual servers, or does it just stop what it's doing? cause if it is the latter, then that would mean most servers running multiple vm's would have little to no worry.

Also I am running in virtualbox, so I wonder if the malware can only check against a handful of popular vm's or any?

[Sharik]

I'm running and patching systems around my house and office faster than that one time when I was getting ready for the zombiepocalypse.

This fucker better not come my way, I have a shotgun.

[h3%5kr3w]

I'm running and patching systems around my house and office faster than that one time when I was getting ready for the zombiepocalypse.

This fucker better not come my way, I have a shotgun.

LAWL!

What if it has 'shotgun.Detection|evasion.c' implemented? :P

[h3%5kr3w]

well, here's what I have so far. I have the conficker downloaded on xpsp2 vm in virtualbox, connected to linux mint as a dns server w/wireshark on it for monitoring. I have vmmap, procmon, and procexplorer running on the xp machine (renamed all files, as i heard, it will disable some of them if not renamed).

I am about to commence infection.

[jmaxxz]

Think I should have a conficker party!

[Swathe]

I have heard reports of two machines out of 5000 here infected so far, but no other information as yet.

[Swathe]

Um, thats a bit of bashing in itself, isn't it? ;)

I do all my artwork, photo editing, web design, video, etc, on the pc. And I only play like a few games on the pc, most of which are either roms of old console games for the NES and SNES or FPS's like Warsow and UT99. I have an ubuntu desktop and a few linux vm's like Backtrack and such, but I really don't care for MAC's myself. Just my opinion. If I bought a MAC I would end up using it for what I already do on the PC. Photoshop, Movies, etc, I do on my main desktop and laptop. I just can't see paying more for a MAC to do the same things I already do on my PC. Also, how many programs out there run on MAC's vs Windows machines(natviely, not with a hyper visor or VM)? People write more software for PC's because of the wider user base and compatible hardware. Another reason people don't buy MAC's is because in order to work with their pc files, they need to either find a MAC alternative program or derviative, or install a VM and run windows inside it anyway, defeating the purpose of a MAC.

Use what you like, but the argument against any OS is just old and tired. There is no end all be all OS any more. Blur the lines, mix it up a little, play with them all, and use what you feel comfortable with to get the job done. In my case, it just happens to be Windows XP.

To a degree yes it is bashing but you see, I use windows, OSX and linux. They all have there place and some are certainly superior in areas to others. I just get sick of people looking down on Linux just because it cannot run all the games they want to play. NIX is more secure and that can never be disputed. Plus it can be made to look 10000% better than windows and the good old "its free" also applies.

People can use whatever OS they like, just dont hate on us because our's is safer lol.

[h3%5kr3w]

i am having some issues infecting my vm.... dunno if this is some smart ass thing the worm does, but i have the 'malware.exe' file... wont run. doesnt add anything to anything, no traffic over the wire. I heard it's supposed to be a dll, so i tried that.. already crashed firefox with it (my own doing, not the worm) trying to just use a firefox file deleted and renamed the malware as that dll file :P. so then i just tried the plain ole registering the dll! regsvr32 malware.dll. Wont do that! so now i'm stuck trying to initiate a virus....

any suggestions?

btw... everytime I try to change the clock in my vm, it changes back to the origional time?! even unchecked to autoupdate over the wire (which it's sandboxed in anyway).. wtf is up with that?