EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

01.22.09

One Windows Worm, One Week, and Possibly 250,000,000+ New Windows Zombies

Posted in Microsoft, Security, Windows at 6:14 am by Dr. Roy Schestowitz

Time for urgent “Change”

THIS IS A HUGELY important issue that we tracked a few days ago. We already knew that almost 1 in 2 Windows PCs had become zombie PCs, but it keeps getting worse. According to this report, as many as one in three Windows PCs may have been occupied by one single worm in a matter of just days! That’s how serious it is.

The computer worm responsible for the biggest attack in years has infected at least 1 out of every 16 PCs worldwide, a security company said Wednesday, and may have managed to compromise as many as nearly 1 in 3.

This may be the right time to contract law-makers or regulators and make a request for new laws to be applied to bad platforms that can leave people dead.

The victims of this latest storm are so many and the BBC says that even a UK-based Fire and Rescue service is downed by its use Windows, which came under virus attack.

Strathclyde Fire and Rescue has said its IT network has “come under attack from a computer virus”.

Once again, this is costing lives.

Vista and Vista 7, as we pointed out a few days ago, are not immune. It’s more of the same.

Windows worm trickery for Vista

The Conficker virus has opened a new can of worms for security experts.

Drives such as USB sticks infected with the virus trick users into installing the worm, according to researchers.

Microsoft would like naive reporters to propagate the perception that this could happen to anyone, but it was Microsoft itself that said: “Our products just aren’t engineered for security.” Well, now they find out?

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Google Bookmarks
  • Ask
  • Digg
  • Mixx
  • Slashdot
  • StumbleUpon
  • Alltagz
  • BarraPunto
  • blinkbits
  • BlinkList
  • Bloglines
  • blogmarks
  • BlogMemes
  • Fark
  • Gwar
  • Klickts

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

8 Comments

  1. David Gerard said,

    January 22, 2009 at 9:50 am

    Gravatar

    I’m quite pleased to see that press articles I’ve seen on the subject make it clear this is a Windows problem, not one that affects all computers.

    (One story suggested in the headline it would affect Linux systems running Wine – which is a real concern, as Wine is good enough to run most worms – but the end of the story asked if anyone had seen Conficker running in Wine and could verify it actually did anything. ?!)

  2. Roy Schestowitz said,

    January 22, 2009 at 10:27 am

    Gravatar

    That’s like saying that the chef is dangerous because he carries a knife (for chopping carrots and stuff).

  3. David Gerard said,

    January 22, 2009 at 10:38 am

    Gravatar

    Well, yeah. It’s quite easy for an app to break out of its WINEPREFIX (referred to as “bottles” in CrossOver), so Wine-aware malware could certainly trash your home directory, try to read your Firefox passwords, etc. (This is not easy to reliably secure against, and the Wine project isn’t bothering to try. If you really want to run toxic waste in Wine, create a new user and do it there.) However, much like theoretical Mac OS X or Linux viruses, there remain 0 examples in the wild.

  4. David Gerard said,

    January 22, 2009 at 10:39 am

    Gravatar

    The key point was, the article was basically an attention-grabbing headline that was actually a complete lie. Ad-banner trolling.

  5. Roy Schestowitz said,

    January 22, 2009 at 10:44 am

    Gravatar

    Which article?

  6. David Gerard said,

    January 22, 2009 at 3:25 pm

    Gravatar

    This one:

    http://network.itproportal.com/articles/2009/01/21/linux-windows-7-beta-could-be-hit-downadup-worm/

    Page 1: “Furthermore, there are rumours that even Linux could be affected by the Worm if they run Wine, an application that allows Linux to execute programs written for the Windows environment. In theory, the virus would only affect the Windows partition rather than the whole operating system.”

    Page 2: “It would be great if someone could confirm the Linux rumours and Wine’s autorun.inf capabilities.”

    i.e. we made up some rubbish to give a splash headline.

  7. Roy Schestowitz said,

    January 22, 2009 at 3:30 pm

    Gravatar

    Extra extra!

    Chef Could Murder Waiter

    Page X: “It would be great if someone could confirm the chef cut the waiter and not onions.”

  8. Yggdrasil said,

    March 31, 2009 at 7:18 pm

    Gravatar

    Where exactly do you get this figure of 250 million? That number is 100 million more than the total number of Internet users in the United States alone. One of your references from Panda Security suggests rates anywhere from 1 in 16, all the way to 1 in 3. Why so high? Because as the article states, Panda security based this data on machines that had come to the website to have their machine scanned. Imagine the percentage of people who go to the doctor due to symptoms of illness, you might find a high percentage who are sick. Everything else was pure speculation, with little hard evidence. While, I’m not surprised you use the worse figure you could find, I’m surprised you don’t better analyze the sources you use to test their integrity. This reflects poorly on you.

    Late January, UPI reported 15 million Conficker infections:

    http://www.upi.com/Top_News/2009/01/25/Virus_strikes_15_million_PCs/UPI-19421232924206/

    But the real nitty gritty from the article is here:

    “Symantec noted on its blog last week that very few computers in North America had been infected, a trend which it attributed to the greater prevalence of legal and fully patched software.”

    In several other places on this site you note that there is no way to be safe with Windows, yet as the article shows, legitimate installed were not affected. Not only because security updates are downloaded, but since XP SP2 the Windows Firewall is enabled by default.

    While you dispute the obscurity of Linux on the desktop, it’s interesting to note that even popular distros like Ubuntu do NOT have a firewall enabled be default. This is unwise, regardless of how many countless security updates are installed.

What Else is New


  1. Links 16/7/2020: FreeBSD Quarterly Status Report, LibreOffice Has Plans, FSF Warns Against 'Online' Voting

    Links for the day



  2. Links 15/7/2020: New PinePhone, GCC 10.2 Release Candidate

    Links for the day



  3. [Humour/Meme] Stop Shaming Free Software Geeks Over What They Wear While They're Coding and Testing

    The corporate media repeatedly shamed Linus Torvalds because he's not wearing a suit and sometimes works in a bathrobe instead; this is the sort of ‘cancel culture’ psyche that looks to remove geniuses and achievers (Torvalds made Linux and Git) based on dumb assertions and superficialities



  4. Free Software as a Tree (It's Hard to Cut Off the Roots)

    Free software is extremely difficult to ban or to eradicate; it's almost inevitable that, by one route or another, 'world domination' will be attained in many sectors



  5. Censorship is for Pussies

    The attempts to remove words that aren’t in any way racist (or even suggestive of racism) are misguided at best; they don’t solve actual problems, but they pretend to be making people feel good (like the activists who push for it; that gives them as sense of power and morality)



  6. Twitter in 2020 is Where Information Comes to Die or to be Corrupted

    Twisting words, lying about the cited articles, declaring people dead (who are still alive!) are just some among the many reasons to quit Twitter and not bother with that noise machine (except maybe in a write-only fashion, copying from elsewhere and never receiving (mis)information from tweets)



  7. Mr. Lovenstein-Derived Joke about Microsoft's WSL (an Attack on GNU/Linux)

    Mr. Lovenstein's cartoon (or someone's modified version of it) about WSL/WSL2 sort of nails it (credit MinceR for the pointer)



  8. [Humour/Meme] Code of Conduct and Language Wars: Another Tool by Which to Oust Community Voices and Poor/Opinionated People of Colour (Because War Must Go On)

    The coup against GNU/Linux isn’t hard to see; Intel and Microsoft viciously attacked poor people in Africa (because they had adopted GNU/Linux) and now they get a say on who to kick out from Linux (based on entirely nontechnical things, including cultural differences)



  9. Links 15/7/2020: Deepin OS Expansion, openSUSE Board Non-Confidence Vote

    Links for the day



  10. IRC Proceedings: Tuesday, July 14, 2020

    IRC logs for Tuesday, July 14, 2020



  11. Twist and Turn, Show Us Your Face

    A little poem about digital privacy



  12. The Race to the Bottom of Tech Rights

    Tech rights (not to be confused with Techrights the site) are going down the drain; people are made complicit using fear tactics, having been told a lot of lies about so-called contact-tracing borderline pseudoscience



  13. [Humour/Meme] OIN Wants Us to Make Peace With Software Patents

    The way things stand, OIN is really not interested in solving the patent problem the Free software way; rather, it's looking to impose its own way on the Free software community



  14. The Last Thing Open Invention Network (OIN) Needs Right Now is Public Association With a Patent Trolls' and Software Patents' Propaganda Site

    The Open Invention Network (OIN) seems to be choosing rather odd platforms; the above publisher, a judge-bashing software patents extremist, cannot possibly improve OIN's image (by association)



  15. The EPO's Misleading 'Studies' Are Just More of the Same Perception Management Routines

    EPO management pays sites to publish a bunch of EPO-controlled propaganda; and we've meanwhile noticed that almost everyone in the press team of the EPO has left (to be replaced by the President's confidant)



  16. Links 14/7/2020: More Laptop Models With GNU/Linux and WordPress 5.5 Beta 2 is Out

    Links for the day



  17. Microsoft Has Not Changed at All (Only the Shallow Marketing and Control of What's Left of the Media Has Changed)

    Microsoft wants everybody to come closer so that everybody can be crushed; the tactics are largely the same



  18. The Founder of Black Duck Still Works for Microsoft

    Black Duck‘s founder, Doug Levin from Microsoft, isn’t doing a terrific job hiding his real loyalties and ‘masters’



  19. IRC Proceedings: Monday, July 13, 2020

    IRC logs for Monday, July 13, 2020



  20. Links 14/7/2020: Claws Mail 3.17.6 and RSS Guard 3.7.0 Released

    Links for the day



  21. Microsoft Has Put the String “0xBIGBOOBS” Inside Linux (Kernel Driver for Microsoft's Windows-Only Proprietary Software, Formerly a GPL Violation); Reddit (Condé Nast) Bans You For Mentioning Such Things

    In this increasingly crazy atmosphere of mass sanctioning and permanent banning (removing everything or everyone that's perceived to be impolite) even "Linux" forums are banning people who point out Microsoft being a rogue corporation that's attacking GNU/Linux



  22. There's Apparently a New Boss (or Policy) at Red Hat/IBM

    The Fedora project doesn’t seem to care much about free speech, no matter one’s seniority in the project; as the person who relayed it to us has just put it, “they even eat their own.” (Longtime contributors) “He’s not a troll. He’s a contributor who rubbed some people the wrong way and now the banhammer is coming out. Fedora KDE was already collapsing and now it finally will.” (Note: Rex Dieter leads or led this project)



  23. There Cannot be Software Freedom Without Free Speech (Which is Nowadays Being Wrongly and Creatively Conflated With Racism)

    The time to speak out in favour of free speech is now; because the next phase typically involves removal (to be sold as "voluntary") of people whose political views are seen as professionally inadequate (recall what they did to Richard Stallman last September)



  24. [Humour/Meme] 'Offensive' Jokes

    Even humour itself is under attack now; people who cannot take/tolerate cartoons and banter are targeting the stand-up comedians, the cartoonists and so on



  25. The Media Does Not Like Talking About Linux (Which It Doesn't Understand Anyway). It Makes the News All About Linus.

    Just like back in May (or every other week) the news about Linux itself is being ignored and the subject is getting personified to make Linux seem rude and unruly



  26. Links 13/7/2020: Linux 5.8 RC5, Qt Creator Beta, Mexico Threatens GNU/Linux

    Links for the day



  27. [Humour/Meme] Embrace, Extend, and Curl

    The Curl project, a high-profile prisoner of GitHub, is again being 'embraced' by Microsoft (which already controls the project through GitHub)



  28. IRC Proceedings: Sunday, July 12, 2020

    IRC logs for Sunday, July 12, 2020



  29. [Humour/Meme] Half a Decade Has Passed and EPO Management Was Never Held Accountable for Illegal Surveillance

    A lot of people may no longer remember it, but the EPO can break privacy laws — as it still routinely does — with no consequences whatsoever



  30. Cleaning the Code

    War must go on; but it'll be more diverse and inclusive


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts