Downadup Worm Currently Infecting Millions of PCs

The Internet Patrol default featured image
Share the knowledge

A new computer worm called Downadup – also known as the Conficker worm – is spreading like wildfire across personal computers, even though it has only been on the scene for a relatively short time. First spotted just weeks ago, in November, the Downadup worm is estimated to already be resident on at least 3 1/2 million PCs.

[Website maintenance provided by Usestrict and we love them!]

In addition to taking advantage of computers that have not had the [Page no longer available – we have linked to the archive.org version instead] applied, the Downadup Conficker worm also will attempt to replicate itself on neighboring networked PCs through brute force password guessing attacks.

But most insidious – and what makes Downadup unique for at least the time being – is that it will attempt to call home every day to a variety of domains that have not yet been registered, but will be – just in time – by the hackers. This means that the domains can’t be detected and whacked because they don’t even exist until just moments before the Downadup worm is ready to connect to them to get their next payload of malware.

Fiendish.

Explains security firm F-Secure’s CFO, Mikko Hyppönen, “The bad guys only need to predetermine one possible domain for tomorrow, register it, and set up a website, and they then gain access to all of the infected machines — pretty clever.”

The Internet Patrol is completely free, and we don't subject you to ads or annoying video pop-ups. But it does cost us out of our pocket to keep the site going (going on 20 years now!) So your tips via CashApp, Venmo, or Paypal are VERY appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

Sean Sullivan, another researcher at F-Secure, said that the estimate of 3.5 million infected PCs currently harbouring the Downadup worm was “a conservative estimate.”

This would be a very good time to run your anti-virus software and, if you are running Windows, to be sure that you have applied that [Page no longer available – we have linked to the archive.org version instead].

The Internet Patrol is completely free, and we don't subject you to ads or annoying video pop-ups. But it does cost us out of our pocket to keep the site going (going on 20 years now!) So your tips via CashApp, Venmo, or Paypal are appreciated!
Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

Get New Internet Patrol Articles by Email!


Share the knowledge

One thought on “Downadup Worm Currently Infecting Millions of PCs

  1. There may be 3-1/2 million infected pcs but I’ve not seen one yet. One worried customer called me to arrange a scan as he’d read about Conficker in his daily paper. This could turn out to be as big a money-spinner as the year 2k compliance bubble. Long may it continue…

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.