Downad, Conficker and April 1 – Part 2


As promised on my earlier Downad, Conficker and April 1 post, I will be doing an update when I have some new information on this issue. So here it is:

Quoting Trend Micro Malware Blog:

Trend Micro is part of the Conficker Working Group, also called the Conficker Cabal. As part of this group, we must continue to set straight misconceptions surrounding DOWNAD/Conficker and what it’s set to do on the anticipated date. Allow us to reiterate some facts:

Q: What will happen on April 1, 2009?
A: Based on our collective technical analysis, we’ve determined that systems infected with the latest version of Conficker will begin to use a new algorithm to determine what domains to contact. We have
not identified any other actions scheduled to take place on April 1, 2009.

Q: Will an updated version of Conficker go out to already-infected systems on April 1?
A: It is possible that systems with the latest version of Conficker will be updated with a newer version of Conficker on April 1 by contacting domains on the new domain list. However, these systems could
be updated on any date before or after April 1 as well using the “peer- to-peer” updating channel in the latest version of Conficker.

Q: Should the general public be alarmed? Why or why not?
A: No, the general public should not be alarmed. Most home users have been protected by Microsoft Security Update MS08-067 being applied automatically.

Read the complete Trend Micro Article HERE.

So my (personal) advice to all:
1. Make sure your machines are patched.
2. Do not panic.
3. Stay safe online

Got to get some sleep 🙂 Tomorrow will be a long long day for me.
Leave some comments here if you have related questions.

Comments are closed.