Downadup Worm Currently Infecting Millions of PCs

   5/24/2019 |  1/15/2009 |  1 Comment
Categories: Virus & AntiVirus, Worms
The Internet Patrol default featured image
Share the knowledge

A new computer worm called Downadup – also known as the Conficker worm – is spreading like wildfire across personal computers, even though it has only been on the scene for a relatively short time. First spotted just weeks ago, in November, the Downadup worm is estimated to already be resident on at least 3 1/2 million PCs.

In addition to taking advantage of computers that have not had the [Page no longer available – we have linked to the archive.org version instead] applied, the Downadup Conficker worm also will attempt to replicate itself on neighboring networked PCs through brute force password guessing attacks.

But most insidious – and what makes Downadup unique for at least the time being – is that it will attempt to call home every day to a variety of domains that have not yet been registered, but will be – just in time – by the hackers. This means that the domains can’t be detected and whacked because they don’t even exist until just moments before the Downadup worm is ready to connect to them to get their next payload of malware.

Fiendish.

Explains security firm F-Secure’s CFO, Mikko Hyppönen, “The bad guys only need to predetermine one possible domain for tomorrow, register it, and set up a website, and they then gain access to all of the infected machines — pretty clever.”

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

Sean Sullivan, another researcher at F-Secure, said that the estimate of 3.5 million infected PCs currently harbouring the Downadup worm was “a conservative estimate.”

This would be a very good time to run your anti-virus software and, if you are running Windows, to be sure that you have applied that [Page no longer available – we have linked to the archive.org version instead].

Get New Internet Patrol Articles by Email!

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

 

More from the Internet Patrol:

New iWorm Worm Specifically Targets OS X - How to Know if Your Mac is Infected
New Malware Spam Thanks You for Purchasing and Shopping with Them
Password to Unlock Files Held Hostage by Ransomware Trojan Revealed
New Windows Ransom Trojan Freezes Computer, Demands Ransom as it Deletes Files

Share the knowledge

One thought on “Downadup Worm Currently Infecting Millions of PCs

  1. There may be 3-1/2 million infected pcs but I’ve not seen one yet. One worried customer called me to arrange a scan as he’d read about Conficker in his daily paper. This could turn out to be as big a money-spinner as the year 2k compliance bubble. Long may it continue…

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.