An Analysis of Conficker C: "Introduction
This addendum provides an evolving snapshot of our understanding of the latest Conficker variant, referred to as Conficker C. The variant was brought to the attention of the Conficker Working Group when one member reported that a compromised Conficker B honeypot was updated with a new dynamically linked library (DLL). Although a network trace for this infection is not available, we suspect that this DLL may have propagated via Conficker's Internet rendezvous point mechanism (Global Network Impact). The infection was found on the morning of Friday, 6 March 2009 (PST), and it was later reported that other working group members had received other DLL reinfections throughout the same day. Since that point, multiple members have reported upgrades of previously infected machines to this latest variant via HTTP-based Internet rendezvous points. We believe this latest outbreak of Conficker variant C began first spreading at roughly 6 p.m. PST, 4 March 2009 (5 March UTC)."
Followers
Thursday, April 2, 2009
Subscribe to:
Post Comments (Atom)
About Me
Twitter Updates
Blog Archive
Tags
- Backtrack (3)
- Cain Abel (1)
- Eee PC (1)
- fgdump (2)
- finger printing (1)
- fingerprinting (1)
- Hping2 (1)
- Linux (2)
- metasploit (6)
- netcat (2)
- news (16)
- nmap (5)
- Ophcrack (1)
- password cracking (5)
- RainbowCrack (3)
- rdp (1)
- Snort (2)
- tcpdump (1)
- training (25)
- vulnerabilities (12)
- WiFi (1)
- xprobe2 (1)
Packet Storm Security Headlines
Packet Storm Security Exploits
milw0rm.com
The Ethical Hacker Network RSS News Feed
SecurityFocus News
SecurityFocus Vulnerabilities
The Security Zealot
0 comments:
Post a Comment