The Conficker Worm: What Happens Next?

60 Minutes: Computer Worm Could Receive New Instructions On April 1

(CBS)  A correction: 60 Minutes made a mistake in using a photograph in our story called "The Internet is Infected." The picture was described in the story as a group of young Russian computer hackers which was inaccurate. The picture, provided to us by an Internet security company, had appeared on a Russian hacker magazine Web site.

---

The Internet is infected. Malicious computer hackers have been creating more and more weapons that they plant on the Internet. They call their weapons viruses and worms - they're creepy, crawly toxic software that contaminate our computers without our ever knowing it. You can be infected by simply visiting your favorite Web site, or just by leaving your computer on, overnight while you're asleep.

And the problem is growing, exponentially. Last year the number of infections tripled. And an entire industry of computer security professionals is in a race to keep the hackers from their goal, which is usually to steal your money.

One of the most dangerous threats ever, a computer worm known as "Conficker," is spreading through the Internet right now. By some estimates, 10 million computers have been infected worldwide.

---

CNET Conficker FAQ

How to protect your computer

---

At Symantec, the company that makes Norton anti-virus software, engineers have been tracking Conficker since last November as it worms its way across the globe.

"This map is showing a visual representation of where all of the known infections of Conficker are across the world," explained Steve Trilling, a Symantec vice president who says the worm is now living on millions of computers, mainly in corporations.

So far, the bad guys who created it haven't triggered Conficker. It's just sitting out there like a sleeper cell.

"Imagine a network of spies that has infiltrated a country. And every day, all of the spies are calling in for their instructions on what to do next," Trilling explained.

Asked what the worm is being asked to do, Trilling told Stahl, "That's the interesting thing. The only thing the worm is being asked to do is to ask for further instructions."

For several months, Trilling says the worm has just been sitting there, awaiting instructions,

It's that ominous, because once the hackers issue instructions, Conficker could turn menacing in an instant.

With one click, the worm's creator can instruct it to suck sensitive data, like bank passwords and account numbers, out of millions of computers, or launch a massive spam attack to clog up the works.

The newest targets of worms are social networking sites. Trilling demonstrated to Stahl how it might work.

Looking at a real Facebook page, Trilling explained, "We added your friend and colleague Morley Safer, you can see down there on the left."

He says a worm can crack into a Facebook account, like Morley's, and send a message to anyone on his friends list.

It's a message a friend or colleague, like Stahl, would be sure to open since it comes from a trusted friend. Stahl took the bait and clicked on what looked like Morley's video link.

"Something looks a little off," Trilling remarked. "You're already infected."

As Trilling demonstrated on a second screen, the hacker "owned" Stahl's online movements. "From here on out, everything you do, gonna show up on the hacker's machine," he explained.

So when Stahl typed her username and password into a bank Web site, it appeared instantaneously on the hacker’s screen, along with her bank account details.

"Every single keystroke you hit, in fact, if you make a mistake and hit a backspace, that shows up in the window," Trilling explained.

The hacker then followed her around, as she browsed the Internet from CBS News to Amazon.com.

"So, if I buy something, they’re gonna have my credit card," Stahl remarked.

"Everything you type in, your address, your credit card, it’s all gonna show up in that window," Trilling warned.

The Internet has become a minefield. Hackers have hidden their malicious software known as "malware" on some of the most trusted Web sites, like eBay, the Miami Dolphins football team, even my.barackobama.com.

Trilling says too few people have top-notch, up-to-date security software.

"There is something that would have prevented me from answering Morley’s message. Or I would never have gotten Morley’s message?" Stahl asked.

"As soon as you clicked on that link and you had security software, you would immediately get an alert. 'This is a bad Web site.' And it would have blocked the attack. You would have never been hit. Putting on that software, you’re preventing yourself from becoming a victim," Trilling advised.

[ecom2000]

When I saw the 60 Minutes documentary on the Conficker virus and thought I would pass on some information about the prevention and removal of this scary virus.

The virus is stoppable using eScan Anti Virus software and it can be removed using the eScan Anti Virus Utility Tool, which has been available for some months to stop the virus from infecting your computer or the removal of it should a computer be already infected.

We ourselves have been using the virus utility tool to remove the Conficker worm from client?s computers when they are using other brands of anti virus software for a number of months now and those of our client?s who are using eScan have not been infected, including our own computers.

eScan is the only brand of anti virus software to use a revolutionary patented process, MicroWorld Winsock Layer (MWL) to detect dormant and active viruses in real time, which deletes them before they can get through to the hard drive. It also has a host of other features to protect computers, such as, web page content scanning, a powerful firewall, popup blocker, real time virus scanning for all types of viruses (including malware, adware, keyloggers, hacking & spyware), parental control, hourly virus signature updates and real time virus & content scanning (plus much more).

A manual is available http://computersolutionsnz.co.nz/conficker.pdf on the Conficker virus, which covers, a description of the virus, how to protect computer and how to remove the virus. You can download the virus utility tool to remove the virus from this link: http://www.computersolutionsnz.co.nz/mwav.zip.

[canuckuk]

It is shameful for 60 minutes not to say anywhere in its reporting that the Mac and UNIX and LINUX operating systems are immune to the Conficker worm.

This is a legitimately fear based story. It is critical that all exceptions are mentioned. It is ridiculous that they don't mention the types of computers this worm does not infect.

Step it up - rise to a higher journalistic standard and properly report the facts behind this issue.

[riseofthethorax]

PS- I also created the website http://www.chann3lz.com/ , it's a youtube jukebox that anyone can contribute to. The help videos that link off of chann3lz go to my user account.. And now that I know I can put url's in my messages, I can give you a direct link 8^| oh brother..

http://www.youtube.com/user/rofthorax

[riseofthethorax]

What happens next?

EVERYONE SWITCHES TO "UBUNTU LINUX"

It's only the smartest move you'll make. I've been using it for two years, and
had Windows XP before that, for years.

Then you can run Windows in a sandbox environment like VMWare or Innotek Virtualbox..
Where you can run your programs without worrying about what the virus will touch.

But then again, you can do all your web browsing, email and office stuff in Ubuntu, so why would you need to go back to Windows? Serriously..

Games?

Search youtube for user "rofthorax" that is me, I have 370+ videos in my channel, most demonstrating games I can play in WINE, a free program that runs windows programs without using Windows, and without the slowness of an emulation. For instance, the entire "Valve Orange Box" will play in WINE, "Oblivion" runs in wine, Left4Dead does, so does COD4.

And WINE is only getting better..

BTW I watch all my Internet video in Ubuntu Linux, I'm typing this on a Thinkpad T30 I bought for 212 dollars on ebay, and effortlessly installed Ubuntu Linux. I first heard this story from the podcast feed that my audio podcast client "IcePodder" got for me.. Honestly, I never thought I'd be able to maintain the use of Linux, even though I know a lot about computers, but it's not as hard as I thought it would be. It's a learning experience, like any computer operating system, but once your get oriented its like any other.. Just, no viruses!!!

[riseofthethorax]

Ubuntu Linux doesn't have this problem.. Also you can use WINE to run windows programs, but a worm of this kind wouldn't work on WINE because WINE runs programs non-continuously (programs run in a Windows API wrapper, but not in a continuous Windows OS).

Search youtube for UBUNTU Linux. It's much more secure than windows, because it doesn't force you to go looking for software on untrusted sites, software that may contain malware like this.

Not to say that Linux couldn't have a virus, just that given the complexities of Linux, that it is custom compiled for each distribution, it's unlikely that a virus or worm could take advantage of all the Linux distributions. Ubuntu would probably be the first to be hit, as it is the most popular now, but it is a fraction of the popularity of Windows. However Ubuntu is as capable as Windows at the same sorts of chores.

Get a free (forever) copy of Ubuntu Linux today. Google for "Ubuntu" .

[JamesMorehead]

Additional information from support.com on Conficker (written in layman's terms): https://www.support.com/feature/conficker-virus-protection.

[cbsantispin]

To follow up on my comments about IBM selling Linux which by it's very nature is "FREE" based on the way Linux is Licensed, many are realizing big profits and selling "FREE" Linux and making money off Linux anyway, the way companies are getting around the "FREE" Linux License is by so-called "adding value" in the form of support or extra features not available in standard "open" Linux. But this still violates the overall spirit and philosophy of Linux which is a "free open source community and user supported environment!". IBM is notorious at selling value added "FREE" Linux and making big profits and while IBM is in the "black" and doing well, corporate greed is stil the order of the day, for example IBM is laying off 5000 U.S. workers and outsourcing their jobs to India! IBM is offering some of those being laying off jjobs in India if they move to and work in India at a quarter of their current salaries! Imagine if you worked for IBM making $65,000 a year and IBM told you in order to keep your job you had to move to India and now make $17,000??? That's whats going on folks, check out this NBC Evening News Report @ http://www.msnbc.msn.com/id/3032619/#30036628 and see for your self! Pure Corporate greed at the expense of American jobs, no patriotism at all.

[cbsantispin]

Microsoft set up shop in the nation of India "big". India adopted Microsoft and Windows hook, line and sinker! Microsoft is just as big in India as it is in the United States. So what's the point? The point is, many U.S. Corporations outsourced their IT work to India because of cheap labor and continue to do so. A lot of personal and private data about Americans is in India's computers, not America's computers! Initially most of this data was located in American computers located in the U.S., where India IT workers logged in to American computers from India, but to speed up processing time, American data ended up being stored in India! Yes, a lot of America's privacy and corporate data and the information it creates is in India "physically"! The computers with America's data located in India may be classified as American owned computers, but I personally define American computers as being located "physically" in the U.S., its a subtle fine point that matters because of legal issues. In this matter of Windows being unsafe and vulnerable to Unix and Linux access, how does the U.S. know its data in India's Windows computers is not being accessed and hacked? It's a fair question.

[OS11]

no, tiotom77 it's nothing like 3 mile island, it's more of a fender bender at a mcdonalds parking lot.

this worm wouldn't affect banks or medical establishments, it only would touch non-savvy computer owners. most banks and medical systems are on Unix, not windows so there is little to worry about.

[tiotom77]

Just Like Three Mile Island, this Conficker worm is a wake up call.We shouldn't get too reliant on computer filing systems. Our financial records are already available over the internet and soon our medical records will be computerized. We better keep paper backups.

[cbsantispin]

The Texas State Senate has banned the use of Microsoft Vista in all Government Agency's! Microsoft has written a letter objecting to the ban of Vista. The State of Texas don't trust Vista, should you?

[cs4466]

Posted by OS11 at 1:12 PM : Apr 2, 2009


Ohhhh now I get it you're being sarcastic!! Very subtle... and quite funny!

[OS11]

yes, but you only make a "ton of money" from Windows since it's a poorly functioning system.

that's what "we as a society" need to all work against... just think if we could eliminated all windows machines from the USA overnight? that would eliminated 200,000+ wasted lives.

macs are actually quite a bit more powerful than windows based machines. there is far more power under the hood of OSX, plus they are far more reliable than a windows unit.

businesses are quickly switching over so the word is out that windows no longer makes in a business environment.

for you, go ahead and get a Mac mini... install fusion or parallels or virtual box, then you can still run windows at the same time with OSX until you are ready to turn off windows for good.

you'll thank me later...

[sly_64]

I make a ton of money working with Windows. Why tell every one of my clients to switch to Mac ? For what reason ?

Mac is good for some industries (music, entertainment, tv, etc)
Windows is good for business. (accounting, financial, tracking, logging)

We don't ever want 1 computer company ruling the world.

[OS11]

usanative2, the origination of Conflicker is Redmond Washington at One Microsoft Way.

Microsoft hates quality computing and wants all their users to SUFFER. If you have a Linux or Mac you don't have to worry since it's based on the fabled AT&T Unix... it's how the "internet" works... and why it is so stable and after 35 years... still "uncrackable"...

People still trying to limp along with "Windows" are fools... that OS can't handle modern communications. Now you know...

[OS11]

Ah, richarcm Macs don't lockup unless they are running Windows. You need to realize Macs primarily run Unix, so while you might get an application crash from time to time, it won't bring the OS down like it does on Windows.

Yes, Mac users can be snobs, but that's because they have reason to be...

You'll get a Mac someday, don't worry...

[richarcm]

So basically....if you don't like Windows....DONT BUY IT. Right?

All of you Mac snobs need to give up the fight. If people buy Windows computers despite having to deal with an ocassional problem such as this and you still only own a small segment of the computer market....PEOPLE JUST DONT LIKE MACS....except for you Mac snobs.

With Macs you may not get viruses but your computer just locks up and gives you the infamous Blue Screen of Death. I can't remember my Windows computer ever doing that.....

[cbsantispin]

Every computer users experience varies depending on their personal computer habits....
Posted by cbsantispin at 3:03 PM : Apr 1, 2009

I was trying to find something relevant and coherent in this post but had difficulty. But If you're takling about removing windows hard drives and putting them into computers with other operating systems, then I have two words for you: Windows Bitlocker, standard feature with the higher end releases of Vista and above. As for the rest of your post, I had a really hard time understanding the relevance...and your point. I'm sure it was my fault.

Posted by cs4466 at 9:07 PM : Apr 1, 2009

I now see why many are blasting you, your Post defending Windows are starting to look stupid! Maybe you can lock Windows down with something called "Bitlocker", but how many average users know about "Bitlocker"? The point is "out of the Box", Windows is not safe, you have to do something extra special to make it secure, and who knows, Linux may also ignore "Bitlocker" since Linux comes with a lot of extra "free" tools too! Since you missed my point, let me make it "crystal clear" to you. Lets say you own a business or maybe you are a power user with a home office, you password protect your computer, lock it down with Windows Security and think you are safe. There is no reason for the average Windows user to seek "Bitlocker" or additional Windows Security other than web security since Windows vulnerabilities are not well known to "average" users. So if someone has physical access to a Windows computer and can access that computer with Linux, the Windows owner is screwed since nothing will be hidden from the person accessing it with Linux! Now, if you don't understand my Post at this point, I can't help you! Your point that Windows has 90% of the OS Market just highlights my point even further, that 90% of Windows users are vulnerable unless they make their hard drives Unix and Linux proof. Windows users may think their computers are safe and on lock down and someone with Linux may know everything on it! That's not good!

[cs4466]

at this rate Windows will fall below 50% in less than 9 years... Sweet!
Posted by OS11 at 9:28 PM : Apr 1, 2009

LOL yea you call me when that happens and we'll talk about some land in Florida I need to sell that would be just perfect for ya!

[OS11]

yes, cs4466, Windows continues to shrink... they've lost 6% in just the last 4 years alone!

now Macs have 9.7% and Linux 0.9%, the deep trend of people leaving Windows is amazing and welcome news for computing users worldwide!

at this rate Windows will fall below 50% in less than 9 years... Sweet!