Wednesday, March 25, 2009

Time is of the essence

You may or may not have heard of "Confiker" or "Downadup". At this juncture, it does not matter what you have heard.

It is time to take action.

Forget the technical jargon. If your computer is not updated and is unprotected by a firewall, it is a target for what is expected to be a massive attack.

If you cannot reach any of the Microsoft, antivirus or other security-related websites, it is likely your computer is among the million plus computers already infected with this worm. In that case, you need to do the following:
  • Disconnect the infected computer from the internet
  • Use an uninfected family member or friend's computer to get information, updates and removal tools from the information provided by SANS ISC.
Even if your computer is not now or never has been infected, take the following steps to help prevent infection by this worm:
  • Enable a firewall on your computer.
  • Get the latest computer updates for all your installed software, most particularly Security Bulletin MS08-067.
  • Use up-to-date antivirus software. (Avast! and Avira AntiVir are free for personal use.)
  • Use caution when opening attachments and accepting file transfers.
  • Use caution when clicking on links to web pages.
  • Protect yourself against social engineering attacks.
Update: Additional information is available in Conficker Information for the Home Computer User.

It is estimated that there are well over a million Windows PC’s currently infected with Conficker. As illustrated in code at the CA Security Advisor Research Blog, on April 1, 2009, the infected machines will attempt to generate 50,000 URLs daily to download an additional component with new instructions.

Although time zero for setting off the worm is April 1, 2009. As Bill Pytlovany points out in Conficker Judgement Day on April 1st, the day begins earlier in other parts of the world than in the western Europe and the North and South American continents. That means that when April 1 arrives in China, in New York, it will be March 31 at noon.

Take steps now to protect your computer. Go to Windows Update.

Calculate at your time
when the first seconds of April 1, 2009 arrive.


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...


Corrine said...

I am happy to see that updated the writeup on Conficker April 1 warnings.

Anonymous said...

Let's hope that people take heed of the warnings. This has been brewing for a while and now we wait and see just what it will do, which is not good news.

This really is quite a scary scenario and with time differences across the globe it will also be a long affair.

Corrine said...

The additional problem is that it is not known at this time what will be in the instructions of any new code that is downloaded.