Jump to content
Want to remove all ads? ×

april fools computer virus

joewilly

By joewilly
in The Jets Lounge

Recommended Posts

Maxman

Maxman

Posted
Posted
Got anything special planned for April Fools this year Max?

:D

Nope.

Well we did write this one little virus that we plan on sending to computers that view Jets site not containing the letters JetNation.com but that is about it.

:-P

Link to comment
Share on other sites
Larz

Larz

Posted
Posted
Bollocks.

it's not an aprils fools virus

it's the conficker worm

MS is offering $250,000 to anyone who can stop it. the announcement was made feb 13th

think of it as the feb 13th worm if you must

http://www.crn.com.au/News/99562,confiker-worm-no-april-fools-day-joke.aspx

Conficker worm no April Fool's day joke

ImageResizer.ashx?w=168&n=http%3a%2f%2fbackoffice.ajb.com.au%2fimages%2fnews%2fworm.jpg

26 March 2009 03:19AM

Tags: confiker | worm | april | fools | joke

Users are being warned the Conficker worm is ready for action on the 1 April - although no one is certain what the worm will do.

Conficker is a computer worm that can infect PCs and spread itself across a network automatically, without human interaction.

Chris Thomas, principal consultant for CA's Internet Security Business Unit told CRN, 1 April is when machines infected with the Conficker.C malware will "wake up" and start communicating with each other, waiting for commands.

"The sheer scale of infections is bigger than anything that CA has seen to date," he said.

"Upon activation this multi-million node botnet could be used for anything from sending enormous amounts of SPAM messages and phishing attempts to a large platform from which to launch denial-of-service attacks, disrupting the internet as a whole."

Thomas said as a matter of course, CA is urging PC users to make sure their anti-malware software is up to date with the latest signature.

In February, Microsoft partnered with technology industry leaders and academia to implement a coordinated, global response to the Conficker (aka Downadup) worm.

Microsoft also announced a US$250,000 reward for information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet.

Along with Microsoft, organisations involved in this collaborative effort include ICANN, NeuStar, VeriSign, CNNIC, Afilias, Public Internet Registry, Global Domains International Inc, M1D Global, AOL, Symantec, F-Secure, ISC, researchers from Georgia Tech, the Shadowserver Foundation, Arbor Networks and Support Intelligence.

Link to comment
Share on other sites
Arsis

Arsis

Posted
Posted
it's not an aprils fools virus

it's the conficker worm

MS is offering $250,000 to anyone who can stop it. the announcement was made feb 13th

think of it as the feb 13th worm if you must

http://www.crn.com.au/News/99562,confiker-worm-no-april-fools-day-joke.aspx

Conficker worm no April Fool's day joke

ImageResizer.ashx?w=168&n=http%3a%2f%2fbackoffice.ajb.com.au%2fimages%2fnews%2fworm.jpg

26 March 2009 03:19AM

Tags: confiker | worm | april | fools | joke

Users are being warned the Conficker worm is ready for action on the 1 April - although no one is certain what the worm will do.

Conficker is a computer worm that can infect PCs and spread itself across a network automatically, without human interaction.

Chris Thomas, principal consultant for CA's Internet Security Business Unit told CRN, 1 April is when machines infected with the Conficker.C malware will "wake up" and start communicating with each other, waiting for commands.

"The sheer scale of infections is bigger than anything that CA has seen to date," he said.

"Upon activation this multi-million node botnet could be used for anything from sending enormous amounts of SPAM messages and phishing attempts to a large platform from which to launch denial-of-service attacks, disrupting the internet as a whole."

Thomas said as a matter of course, CA is urging PC users to make sure their anti-malware software is up to date with the latest signature.

In February, Microsoft partnered with technology industry leaders and academia to implement a coordinated, global response to the Conficker (aka Downadup) worm.

Microsoft also announced a US$250,000 reward for information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet.

Along with Microsoft, organisations involved in this collaborative effort include ICANN, NeuStar, VeriSign, CNNIC, Afilias, Public Internet Registry, Global Domains International Inc, M1D Global, AOL, Symantec, F-Secure, ISC, researchers from Georgia Tech, the Shadowserver Foundation, Arbor Networks and Support Intelligence.

I guess I'll have to pirate some anti-virus software.

Link to comment
Share on other sites
Larz

Larz

Posted
Posted

I just scanned my PC, I seem to be OK. I read that the master computer may not communicate with the slaves for another week or two

just to be safe, y'all should at least do a scan

http://www.cnn.com/2009/TECH/04/01/tech.viruses/index.html

"I think joke's on us a little bit, which you would have expected with having an April 1st date," said Holly Stewart, threat response manager for IBM's X-Force, a computer security service.

However, that doesn't mean the much-talked-about worm, called Conficker.c, is a joke, computer security experts told CNN on Wednesday.

"By no means do I think we're in the clear," said Paul Henry, a forensics and security analyst for Lumension Security, based in Phoenix, Arizona.

On Wednesday, a master computer gained control of an estimated 5 million "zombie" PCs infected with the worm, experts said.

Security experts fear the author of the malicious computer program essentially could do anything with those Windows-based machines.

Conficker's motive is probably financial, they said. The worm's author could steal financial information, shut down Web pages, track keystrokes or send spam from infected computers.

"They have full administrative-level rights to run anything they want on all of the infected machines," said Mikko Hypponen, chief research officer for F-Secure, an Internet security company.

so this means you could be a zombie right now, and not even realize it

scan your PC !!

I used this scanner, and I'm clean :cheers:

http://www.mcafee.com/us/enterprise/confickertest.html

Link to comment
Share on other sites
  • 2 weeks later...
Larz

Larz

Posted
Posted

3 - 12 million PC's may have been infected

scan yours to make sure

http://www.cnn.com/2009/TECH/04/09/conficker.activated/index.html

txt_plus.giftxt_plus_dn.gif

(CNET) -- The Conficker worm is finally doing something--updating via peer-to-peer between infected computers and dropping a mystery payload on infected computers, Trend Micro said on Wednesday.

art.conficker.ctsy.jpg This piece of computer code told the worm to activate on April 1, researchers found.

corner_wire_BL.gif

Researchers were analyzing the code of the software that is being dropped onto infected computers but suspect that it is a keystroke logger or some other program designed to steal sensitive data off the machine, said David Perry, global director of security education at Trend Micro.

The software appeared to be a .sys component hiding behind a rootkit, which is software that is designed to hide the fact that a computer has been compromised, according to Trend Micro. The software is heavily encrypted, which makes code analysis difficult, the researchers said.

The worm also tries to connect to MySpace.com, MSN.com, eBay.com, CNN.com and AOL.com as a way to test that the computer has Internet connectivity, deletes all traces of itself in the host machine, and is set to shut down on May 3, according to the TrendLabs Malware Blog.

Because infected computers are receiving the new component in a staggered manner rather than all at once there should be no disruption to the Web sites the computers visit, said Paul Ferguson, advanced threats researcher for Trend Micro.

"After May 3, it shuts down and won't do any replication," Perry said. However, infected computers could still be remotely controlled to do something else, he added.

On Tuesday night Trend Micro researchers noticed a new file in the Windows Temp folder and a huge encrypted TCP response from a known Conficker P2P IP node hosted in Korea.

"As expected, the P2P communications of the Downad/Conficker botnet may have just been used to serve an update, and not via HTTP," the blog post says. "The Conficker/Downad P2P communications is now running in full swing!"

In addition to adding the new propagation functionality, Conficker communicates with servers that are associated with the Waledac family of malware and its Storm botnet, according to a separate blog post by Trend Micro security researcher Rik Ferguson.

The worm tries to access a known Waledac domain and download another encrypted file, the researchers said.

Conficker.C failed to make a splash a week ago despite the fact that it was programmed to activate on April 1. It has infected between 3 million and 12 million computers, according to Perry.

Initially, researchers thought they were seeing a new variant of the Conficker worm, but now they believe it is merely a new component of the worm.

The worm spreads via a hole in Windows that Microsoft patched in October, as well as through removable storage devices and network shares with weak passwords.

Link to comment
Share on other sites
Larz

Larz

Posted
Posted
12 million?

Thats nothing at all... that virus is worthless nothing to worry about...

lol

this worm could be dowloading a program on your PC right now to track your keystrokes and steal your credit card and banking info

good advice, nothing to worry about :rolleyes:

Link to comment
Share on other sites
ECURB

ECURB

Posted
Posted
lol

this worm could be dowloading a program on your PC right now to track your keystrokes and steal your credit card and banking info

good advice, nothing to worry about :rolleyes:

There is at least 1.5 BILLION internet users... that means this virus effects less than 1% of users... not to mention it is aimed at weak corporate networks and not your typical DSL or Cable user with a shared IP and a firewall built into their modem/router and system...

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

Content Partnership

Yes Network

Site Sponsor

MILE-Social - NJ Social Media & SEO company

NY Jets Podcast

NY Jets Podcast
×
×
  • Create New...