Aldi is recalling four-in-one Fission external hard drives infected with the Conficker worm and pulling them from shop shelves.
The Australian Computer Emergency Response Team warned consumers yesterday through the Attorney General's department to return the devices bought from the discount chain's shops. Consumers who had used the drives should run anti-virus over their PCs, the groups said. The $99 device had an external hard drive, DVD, USB and card reader.
Aldi said the worm, malicious software that copied itself between devices to infect them, was detected by Kaspersky anti-virus software.
"The manufacturer recommends that this same software or similar be used to scan all customers’ computers and USB storage devices which have been in contact with the four-in-one hard drive, to detect and remove if present," Aldi said.
Conficker infected up to 10 million computers and was the most prolific worm to surface since the Slammer in 2003. It infected banks, hospitals and government agencies in Australia.
It spread through a buffer overflow vulnerability in Windows Server Service where it disabled operating system updates, Security Centre (including Windows Defender) and error reporting. It was found in five versions - A, B, B++, C and E.
The Conficker botnet was dormant and had not received command controls but millions of computers remained infected.
Copyright © SC Magazine, Australia
Issue: 325 | March 2014
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.