Conficker baffles security experts

By on
Conficker baffles security experts

Security experts have admitted that the Conficker worm has baffled them.

The worm has infected more than five million computers in a botnet that is powerful enough to take out the internet in Australia, according to the Sydney Morning Herald.

Rodney Joffe, a director of the Conficker Working Group formed to defeat the worm, said, "The general agreement in the security world is that Conficker is the largest threat facing us from a cyber crime point of view. It has proven to be extremely resilient. It's almost impossible to remove."

The worm, which spreads rapidly among PCs by exploiting a flaw in Microsoft Windows, first surfaced last November.

Infected PCs are dragooned into a botnet controlled by the Conficker worm's unknown authors, which security researchers fear could be used to launch cyber attacks over the internet.

Conficker has built-in mechanisms to prevent people from scanning their computers with anti-virus software. The worm also spreads without the users having to do anything other than switch on their computers.

If a network admin can disinfect 99 machines out of 100 and one is still infected, it will begin to try to reinfect the others again.

While other botnets are destroyed by disabling the command server, with Conficker the location of this server changes every day and state-of-the-art cryptography means it's almost impossible to crack.

"The best minds in the world have not managed to crack the code behind this yet," Joffe said.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©

Most Read Articles

You must be a registered member of CRN to post a comment.
| Register

Log In

Username / Email:
  |  Forgot your password?