FierceCIOFierceCIOTechWatchFierceMobileITFierceContentManagementFierceGovernmentIT   FierceVoIPFierceHealthITFierceFinanceIT

New Microsoft worm sees spike in number of infections

January 13, 2009 — 5:02am ET | By Paul Mah
Tools
Tags
worms and viruses
Worms
Microsoft
Malware
IT Security

A bug patched more than two months ago in one of Microsoft's rare, out-of-cycle updates has reared its ugly head. Administrators who have not yet patched against this vulnerability are feeling the heat as the Conficker worm spreads like a wildfire through corporate networks by exploiting systems not already updated with the patch.

According to security vendor F-Secure Corp., the worms are frustratingly difficult to disinfect as they lock users out of their accounts.  Upon infection, the worm attempts to download updated versions from a changing list of locations, blocks most security software updates and for good measure, installs more malware on the machine. It has several attack vectors, including spreading by copying itself into USB storage devices, via the Microsoft RPC flaw itself, and also attempts to crack passwords by means of a built-in dictionary.

For more on this story:
- check out this article at Computerworld
- check out this article at SearchSecurity

Related Articles:
Microsoft releases out-of-order patch for critical vulnerability
IT security news from FierceCIO
Malware news from FierceCIO

Click here to get the FierceCIO:TechWatch email newsletter for FREE!


Be the first to comment

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

To combat spam, please enter the code in the image.