Cody Taylor

nandemoari writes “A new variant of the Conficker/Downadup worm has been detected. The worm opens a backdoor on an infected machine and allows hackers remote control of infected PCs. Dubbed Conficker B++ (and not to be confused with Conficker B), the new variant of the worm opens a backdoor with auto-update functionality, allowing a hacker to distribute malware to infected machines. It’s difficult to know exactly how long Conficker B++ has been circulating, but researchers first noticed it on February 6 of this year.” If this seems familiar to you, it probably is.

Read more of this story at Slashdot.

A Trojan horse lurking on servers belonging to Auctiva, a Web site offering eBay auction tools, infected people’s PCs last…

Scareware has found itself a new flavor in Anti-Virus-1, possibly in response to court cases and investigations launched against Antivirus XP last year. In this case, the program is a bit malware, a bit scareware, and generally bad news. It doesn’t just yammer at the user with false positives, it’ll also hijack your browser and aim it at phony posi

CWmike writes “Criminals behind the widespread Conficker worm have released a new version that could signal a major shift in the way the malware operates. The new variant, dubbed Conficker B++, was spotted three days ago by SRI International researchers, who published details of the new code on Thursday. To the untrained eye, the new variant looks almost identical to the previous version of the worm, Conficker B. But the B++ variant uses new techniques to download software, giving its creators more flexibility in what they can do with infected machines.”

Read more of this story at Slashdot.

Varzil found an interesting story about some “Rogue Anti-Malware” (which seems to me should just be called ‘Malware’) which modifies your HOSTS file to trick you into reading a fake anti-virus review which is of course for more malware. Modifying HOSTS is an old trick, but this is interesting because it’s actually trying to get you to read fake content: normally this sort of trick is used to prevent you from fixing your computer, but this one is trying to get you to break it even more. I guess friends don’t let friends modify their HOSTS files.

Read more of this story at Slashdot.

alphadogg writes “The spreading Conficker/Downadup worm is now viewed as such a significant threat that it’s inspired the formation of a posse to stop it, with Microsoft leading the charge by offering a 0,000 reward to bring the Conficker malware bad guys to justice. The money will be paid for ‘information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet,’ Microsoft said today in a statement, adding it is fostering a partnership with Internet registries and DNA providers such as ICANN, ORG, and NeuStar as well as security vendors Symantec and Arbor Networks, among others, to stop the Conficker worm once and for all. Conficker, also called Downadup, is estimated to have infected at least 10 million PCs. It has been slowly but surely spreading since November. Its main trick is to disable anti-malware protection and block access to anti-malware vendors’ Web sites.”

Read more of this story at Slashdot.

Ensign Taco writes “I’m sure nearly every one of us has had it happen. All of a sudden your Windows PC slows to a crawl for no apparent reason. Yeah, we all like Linux because it doesn’t do annoying things like this, but the Windows desktop still reigns supreme in most managed LAN work environments. I’m running XP with 4G of RAM and a decent CPU, and everything was fine, until one day — it wasn’t. I’ve run spybot, antivirus, and looked at proc explorer — no luck. There is no one offending, obvious process. It seems every process decides to spike at once at random intervals. So I’m wondering if there’s a few wizards out there that know what to look at. Could this be a very clever virus that doesn’t run as a process? Or could this just be some random application error that’s causing bad behavior? I’ve encountered this a few times with Windows PCs, but the solution has always been to just add more hardware. Has anyone ever successfully diagnosed this kind of issue?” And whether such a problem is related to malware or not, what steps would you take next?

Read more of this story at Slashdot.