In the last week of March, I was called upon our company's CERT to address the management's perceived threat of Conficker's April 1 activation. We ended up limiting the internet access of the company to a white list and a team had been formed to quickly respond to any user complaints.
April 1 came and went and nothing seems to have happened, thus my question: Is conficker worth losing sleep over?
You must have been lucky enough to have your Antivirus and patches updated in time for the threat to appear. Me, I had to do damage control on one of our company's site in Argentina.ServerJockeyhttp://www.serverjock.com
ServerJockeyhttp://www.serverjock.com
It's a real threat...Fortunately, we did not have any incident related to Conficker. How bad was the damage in your Argentina site?
We had to cleanup machines that were unproperly patched. Maybe a hundred machines or so.ServerJockeyhttp://www.serverjock.com
Microsoft Forefront. That's the best antivirus for me especially for threats like this.
Lucky for us, only one server was unproperly patched since it will be decommissioned also.
The initial rapid spread of the worm has been attributed to the number of wWIndows PCs (estimated at 30%) which have yet to apply the Microsoft patch for the MS08-067 vulnerability... and there are I think 5 variants of CONFICKER guys.
It's not just the patch... We had experienced a patch PC with the latest anti-virus being infected...
And mind you, this worm is very very hard to clean...
we dont experience this threat., but the volume of our sales for anti-virus increase because of this issue. even with the april fools day virus issue.. :D
The real deal. Just fortunate that the perimeter guards did'nt allow the true payload from propagating.
I experienced how conficker infects my client business and its true that this is very hard to clean. Some of them must be remove manually. Keeping your virus definitions up to date may really help and of course educating the users may reduce the impact of this to your business.
In our company we been hit by this virus, the virus spread in unpatched laptop. Lucky for us, we manage to stop the virus propagation.
we didn't experience it. all machines are patched and we have cool "gadgets" to prevent and isolate these threats. i recommend to patch all machines. use patch management. conficker is worth sleeping over, the activity of this virus is a pain in the ass!
what are the noticeable symptomps of this confiker virus? and what's the real threat of this?
i was experiencing it too...until now it cannot clean and aside from that it double with the wsacmnt virus..how can it cure. what antivirus that possibly done for this..
Banz
