EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

01.22.09

One Windows Worm, One Week, and Possibly 250,000,000+ New Windows Zombies

Posted in Microsoft, Security, Windows at 6:14 am by Dr. Roy Schestowitz

Time for urgent “Change”

THIS IS A HUGELY important issue that we tracked a few days ago. We already knew that almost 1 in 2 Windows PCs had become zombie PCs, but it keeps getting worse. According to this report, as many as one in three Windows PCs may have been occupied by one single worm in a matter of just days! That’s how serious it is.

The computer worm responsible for the biggest attack in years has infected at least 1 out of every 16 PCs worldwide, a security company said Wednesday, and may have managed to compromise as many as nearly 1 in 3.

This may be the right time to contract law-makers or regulators and make a request for new laws to be applied to bad platforms that can leave people dead.

The victims of this latest storm are so many and the BBC says that even a UK-based Fire and Rescue service is downed by its use Windows, which came under virus attack.

Strathclyde Fire and Rescue has said its IT network has “come under attack from a computer virus”.

Once again, this is costing lives.

Vista and Vista 7, as we pointed out a few days ago, are not immune. It’s more of the same.

Windows worm trickery for Vista

The Conficker virus has opened a new can of worms for security experts.

Drives such as USB sticks infected with the virus trick users into installing the worm, according to researchers.

Microsoft would like naive reporters to propagate the perception that this could happen to anyone, but it was Microsoft itself that said: “Our products just aren’t engineered for security.” Well, now they find out?

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

8 Comments

  1. David Gerard said,

    January 22, 2009 at 9:50 am

    Gravatar

    I’m quite pleased to see that press articles I’ve seen on the subject make it clear this is a Windows problem, not one that affects all computers.

    (One story suggested in the headline it would affect Linux systems running Wine – which is a real concern, as Wine is good enough to run most worms – but the end of the story asked if anyone had seen Conficker running in Wine and could verify it actually did anything. ?!)

  2. Roy Schestowitz said,

    January 22, 2009 at 10:27 am

    Gravatar

    That’s like saying that the chef is dangerous because he carries a knife (for chopping carrots and stuff).

  3. David Gerard said,

    January 22, 2009 at 10:38 am

    Gravatar

    Well, yeah. It’s quite easy for an app to break out of its WINEPREFIX (referred to as “bottles” in CrossOver), so Wine-aware malware could certainly trash your home directory, try to read your Firefox passwords, etc. (This is not easy to reliably secure against, and the Wine project isn’t bothering to try. If you really want to run toxic waste in Wine, create a new user and do it there.) However, much like theoretical Mac OS X or Linux viruses, there remain 0 examples in the wild.

  4. David Gerard said,

    January 22, 2009 at 10:39 am

    Gravatar

    The key point was, the article was basically an attention-grabbing headline that was actually a complete lie. Ad-banner trolling.

  5. Roy Schestowitz said,

    January 22, 2009 at 10:44 am

    Gravatar

    Which article?

  6. David Gerard said,

    January 22, 2009 at 3:25 pm

    Gravatar

    This one:

    http://network.itproportal.com/articles/2009/01/21/linux-windows-7-beta-could-be-hit-downadup-worm/

    Page 1: “Furthermore, there are rumours that even Linux could be affected by the Worm if they run Wine, an application that allows Linux to execute programs written for the Windows environment. In theory, the virus would only affect the Windows partition rather than the whole operating system.”

    Page 2: “It would be great if someone could confirm the Linux rumours and Wine’s autorun.inf capabilities.”

    i.e. we made up some rubbish to give a splash headline.

  7. Roy Schestowitz said,

    January 22, 2009 at 3:30 pm

    Gravatar

    Extra extra!

    Chef Could Murder Waiter

    Page X: “It would be great if someone could confirm the chef cut the waiter and not onions.”

  8. Yggdrasil said,

    March 31, 2009 at 7:18 pm

    Gravatar

    Where exactly do you get this figure of 250 million? That number is 100 million more than the total number of Internet users in the United States alone. One of your references from Panda Security suggests rates anywhere from 1 in 16, all the way to 1 in 3. Why so high? Because as the article states, Panda security based this data on machines that had come to the website to have their machine scanned. Imagine the percentage of people who go to the doctor due to symptoms of illness, you might find a high percentage who are sick. Everything else was pure speculation, with little hard evidence. While, I’m not surprised you use the worse figure you could find, I’m surprised you don’t better analyze the sources you use to test their integrity. This reflects poorly on you.

    Late January, UPI reported 15 million Conficker infections:

    http://www.upi.com/Top_News/2009/01/25/Virus_strikes_15_million_PCs/UPI-19421232924206/

    But the real nitty gritty from the article is here:

    “Symantec noted on its blog last week that very few computers in North America had been infected, a trend which it attributed to the greater prevalence of legal and fully patched software.”

    In several other places on this site you note that there is no way to be safe with Windows, yet as the article shows, legitimate installed were not affected. Not only because security updates are downloaded, but since XP SP2 the Windows Firewall is enabled by default.

    While you dispute the obscurity of Linux on the desktop, it’s interesting to note that even popular distros like Ubuntu do NOT have a firewall enabled be default. This is unwise, regardless of how many countless security updates are installed.

What Else is New


  1. Links 6/5/2016: Neptune 4.5.1, Parts of Basho DB Liberated

    Links for the day



  2. IBM Comes Under Growing Scrutiny for Increasingly Acting Just Like a Patent Troll Amid Layoffs

    Deservedly if not belatedly too, more and more pundits come to recognise the rogue element which is IBM, having promoted software patents all around the world, utilised software patents aggressively (to attack/marginalise/tax rivals), lobbied the government to antagonise the Supreme Court's decision on Alice (using former IBM staff which it had somehow snuck into the USPTO), created bogus solutions to the side effects (such as patent trolls) and so on



  3. Enemies of Europe: A Month After Promoting UPC in London, Benoît Battistelli and the EPO Do This in Helsinki

    The US-leaning corporate occupation by Battistelli and his big corporate clients (or bosses) comes up north, approaching even Russia's border



  4. You Need to Become Proprietary Software Customer (Microsoft Recommended) to Interact with the European Patent Office

    The European Patent Office (EPO) continues to show technical and bureaucratic anomalies that have essentially turned it into agent of monopolisation, benefiting firms from across the Atlantic



  5. US Congress Should Investigate EPO and Battistelli, Not Just WIPO and Francis Gurry

    The US takes more and more actions against WIPO for abuses against workers, but why not the European Patent Office (EPO) as well?



  6. Amid French Political Actions Against EPO Management French Consulate the Target of Next Week's EPO Staff Protest

    Next Wednesday at lunchtime staff of the European Patent Office will march to the French consulate in Munich in pursuit of labour rights, human rights etc. (not just of EPO staff but also, by extension, all staff in such unaccountable international institutions)



  7. Links 5/5/2016: gNewSense 4.0 released, IPFire 2.19

    Links for the day



  8. Links 4/5/2016: Wine Staging 1.9.9, ImageMagick Bug Fixes

    Links for the day



  9. Links 3/5/2016: Mozilla Firefox 46.0.1, More Jolla Funding

    Links for the day



  10. New Paper About the UPC Explains Why It is Bad for Small- and Medium-sized European Businesses

    A detailed academic analysis of the Unitary (or Unified) Patent Court reveals/concludes/asserts that it is being marketed or promoted using a misleading premise and promise



  11. [ES] Gobiernos en Europa Todavía Activos en Contra de la Gerencia de la EPO

    Todavía hay trabajo político que está siendo hecho — aunque discretamente — contra Battistelli y sus chácales en la alta gerencia de la Oficina Europea de Patentes



  12. Links 3/5/2016: International Day Against DRM, 25th Anniversary of Linux (Kernel) Near

    Links for the day



  13. Interesting Supreme Court Cases About Patents in the United States

    A quick review of some of the latest developments regarding SCOTUS (the US Supreme Court) as far as patents go



  14. Governments in Europe Still Active Against EPO Management

    There is still political work being done -- albeit rather discreetly -- against Battistelli and his goons at the European Patent Office's top-level management



  15. The European Spam Office (EPO)

    EPO budget at 'work', days after doing copy-paste jobs and also working overtime in the weekend for an extravagant and needless/purposeless event (except for Battistelli's own pride)



  16. Not Just Benoît Battistelli and Willy Minnoye (EPO): Željko Topić Too Thinks He is Above the Law, Avoids the Judges and Courts

    The latest developments regarding some of the criminal complaints and civil lawsuits against Topić, who is now a Vice-President at the European Patent Office (EPO)



  17. Nefarious Forces for Patent Abuse and Software Patents in the United States, Australia, India, Korea, and Europe

    A roundup of news from the weekend and today, with emphasis on the elements inside the system (or the media) which push for regressive policies that benefit them financially at the expense of everybody else



  18. [ES] El Sistema de Patentes de los EE.UU: Donde Uno Desperdicia Años en Corte y Gasta $8,000,000 en Honorarios de Abogados Peleándo una Patente Falsa

    un sumario de noticias acerca de las patentes de software en los EE.UU. Y ha lo que han llevado, debido en gran manera al decline en calidad de las patentes por parte de la USPTO (dejando que otros se las arreglen limpiando el desórden)



  19. [ES] La Oficina Europea de Patentes Todavía Sigilósamente Abusiva, Pagará $15,000 en Compensasió a Trabajadora Tras un Tardío Fallo de la ILO

    La Organización Internacional del Trabajo (ILO) emite un fallo en un caso de abuso de la EPO y nota “la excesiva duración de los procedimienteos internos de apelación.”



  20. Links 2/5/2016: Linux 4.6 RC6, DragonBox Pyra

    Links for the day



  21. Links 1/5/2016: Wine 1.9.9, Devuan Jessie 1.0 Beta

    Links for the day



  22. The US Patent System: Where One Wastes Years in Court and Spends $8,000,000 in Lawyers' Fees Fighting a Bogus Patent

    A roundup of news about software patents in the US and what they have led to, owing in part to the USPTO's declining patent quality (leaving others to clean up its mess)



  23. The European Patent Office Still Silently Abusive, Will Pay $15,000 in Compensation to Female Worker After Belated ILO Judgment

    The International Labour Organisation (ILO) issues a judgment on a case of abuse by the EPO and notes "excessive length of the internal appeal proceedings."



  24. [ES] Alice Continúa Quebrando Patentes de Software Asi Que los Abogados de Patentes, Cabilderos de los Monopolistas, Etc. Ahora Atacan a la Corte Suprema por Hacer Esto

    los cabilderos Corpórativos y abogados de patentes están tratándo de poner a Alicia en la tumba, por su impacto en las patentes de software que es muy profundo y así hasta ahora casi indetenible



  25. [ES] ¿Cómo Salvar la Reputación de la EPO?: Crear Más Jurados de Apelaciónes en Europa y Abolir la Malgíada/Malintencionada Fantasía de la UPC

    Una crítica evaluación de lo que ocurre en la Oficina Europea de Patentes (EPO), la que rápidamente se está yendo para abajo (y degradando sobre todo) a el nivel de los sistemas Chinos, en conjuntamente con corrupción, los abusos, y la bajísima calidad de las patentes



  26. [ES] La Corte de Apelaciónes del Circuito Federal (CAFC) Acaba de Ponerse a Favor de los Trolles de Patentes

    la tristémente célebre CAFC, que manifestó las patentes de software en los EE.UU, acaba de dar un regalo a los trolles de patentes quienes típicamente usan las patentes de software para extorsión enc complicidad con los jueces del Este de Texas



  27. [ES] Análisis de los Últimos Datos de Lex Machina Acerca de la Litigación de Patentes Muestra Como está Declinándo

    el Professor Mark Lemley de Lex Machina resalta las tendencias en litigation al colectar y analizar datos relacionados con patente y concerniéntes a monopolios intelectuales en general; actualmente muestra una sequía de litigaciones (muestran que ha disminuído)



  28. [ES] La India Está Teniendo Otra Prueba de los Peligros de las Patentes Occidentales, Debe Aprender a Rechazar Completamente las Patentes de Software en Medio de Gran Presión

    El gigante de software que es la India continua enfrentándos ea la cruel y agresivo cabildeo de Occidente, haciéndo que este controle a la India por patentes que no deberían de existir en primer lugar



  29. [ES] Microsoft Dice que Continuará Extorsiónando a Compañías Que Distribuyan Linux, Usando Patentes de Software Usuallmente

    La guerra de Microsoft contra Linux, una guerra que es peleada usando patentes de software patents (por ganancias y/o por chantáje con arreglos empaquetados), todavía continúa a pesar de todas las tácticas de relaciónes públicas de Microsoft y sus sócios



  30. Alice Continues to Smash Software Patents So Patent Lawyers, Monopolists' Lobbyists Etc. Now Attack the Supreme Court for Doing This

    Corporate lobbyists and patent lawyers are trying to put Alice in the grave, for its impact on software patents is very profound and thus far almost unstoppable


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts