On Wednesday, April 1, the latest variant of the Conficker (also known as Downadup and Kido) work will download new instructions. The sophistication of this worm and its botnet have many concerned, although the amount of legitimate concern is a matter of debate.

If you’re concerned, then here are the eight most important things to know about Conficker, updated on Monday morning:

1. Researchers have discovered what they’re calling a signature for Conficker, and developed a scanner based upon the technology.

2. The overwhelming majority of systems infected with Conficker were infected through a vulnerability in the Windows RPC facilities. This vulnerability was patched in October. If you installed that patch before Conficker came out (late December ‘08) then you were protected and still are. If you haven’t installed the update then it’s essential that you do so. Windows Vista is technically vulnerable in this way, but the exploit is almost impossible to execute on it. Conficker is basically an XP problem.

3. Conficker can also spread through network shares, including those that have weak passwords; the worm executes a “dictionary attack” in which a list of common passwords (think “password”, “asdf”, etc) are used to gain access to the share. So if you find new executables on such drives they may be infected. Treat them as you would a program that got e-mailed to you unsolicited, and we hope that means you’ll avoid it and report it to a network admin if you have one. A good anti-malware program will detect it at this stage.

4. It follows from this advice that you are also better off by using complex and unobvious passwords, especially those that use both numerals and letters and especially if they include punctuation.

5. Conficker can also spread by putting itself on removable drives like USB drives. When it does so it sets the Autorun on those drives to run itself. So if you insert such a drive you could, at the least, get a standard Windows Autoplay menu offering Conficker among its options. Sometimes it will disguise itself as the Windows option for opening Windows Explorer for the inserted drive. Once again, a good anti-malware program will detect it at this stage.

6. Anti-malware software isn’t perfect but it has a very high rate of success. Conficker is about as high-profile as malware gets; all the companies have it and understand it well, and so if you have anti-virus software and keep it up to date it’s hard for you to get attacked.

7. Conficker can interfere with the ability of Windows and anti-malware programs to update themselves. Ensure that they are doing so by checking the last update date/time of your anti-malware software and by checking Windows Update manually. Leave no critical updates uninstalled.

8. Free Conficker/Downadup Cleaning Tools:

• McAfee Stinger
• ESet EConfickerRemover
• Symantec W32.Downadup Removal Tool
• F-Secure F-Downadup, FSMRT, more tools
• BitDefender single PC and network removal tools
• Kaspersky KKiller
• Trend Micro

If you use one of these tools to remove Conficker immediately install the MS08-067 patch afterwards.

• BitDefender
• Symantec

Source

Originally posted 2009-04-12 11:31:05.

Popularity: 1% [?]

Just minutes ago the verdict in the case of The Pirate Bay Four was announced. All four defendants were accused of ‘assisting in making copyright content available’. Peter Sunde: Guilty. Fredrik Neij: Guilty. Gottfrid Svartholm: Guilty. Carl Lundström: Guilty. The four receive 1 year in jail each and fines totaling $3,620,000.

While only a few weeks ago, it seems like an eternity since the trial of The Pirate Bay Four ended and the court retired to consider its verdict. The prosecution claimed that the four defendants were ‘assisting in making copyright content available’ and demanded millions of dollars in damages. The defense did not agree, and all pleaded not guilty – backed up by the inimitable King Kong defense.

Today, Friday April 17, the court issued its decision: article continuously updated

“The court has found that by using Pirate Bay’s services there has been file-sharing of music, films and computer games to the extent the prosecutor has stated in his case,” said the district court. “This file-sharing constitutes an unlawful transfer to the public of copyrighted performances.”

Peter Sunde (born September 13, 1978) alias ‘brokep’:

Verdict: Guilty – 1 year in prison, damages to pay: $905,000

Peter Althin, brokep’s lawyer said, “I spoke to Peter and he wasn’t very surprised. A journalist he’d spoken to knew an hour before it was public that all four would be convicted. The verdict was leaked from the court. I have to think about what effects that can have on the sentence. It is unacceptable that the court is leaking.”

Fredrik Neij (born April 27, 1978) alias ‘TiAMO’:

Verdict: Guilty – 1 year in prison, damages to pay: $905,000
‘
‘
‘
‘

Gottfrid Svartholm (October 17, 1984) alias ‘Anakata’:

Verdict: Guilty – 1 year in prison, damages to pay: $905,000

Anakata’s lawyer Ola Salomonsson said, “We’re appealing. It’s very surprising that the court has chosen to treat the accused as a team.”

Carl Lundström (born April 13, 1960)

Verdict: Guilty – 1 year in prison, damages to pay: $905,000
‘
‘
‘
‘

The court said that the four defendants worked as a team, were aware that copyrighted material was being shared using The Pirate Bay and that they made it easy and assisted the infringements. It categorized the infringements as ’severe’. The judge said that the users of The Pirate Bay committed the first offense by sharing files and the four assisted this.

While the court did not agree with the plaintiff’s exaggerated estimates of losses, it still set the damages at 30 million SEK ($3,620,000). This a hugely significant amount and the court has ordered that the four should pay this amount between them.

The judge also stated that the usage of BitTorrent at The Pirate Bay is illegal. Rest assured, other torrent sites hosted in Sweden will be keeping a close eye on developments.

The defense put it to the judge that he had folded under intense political pressure. The judge denied this stating that the court made its decision based on the case presented.

At one point the judge was asked if he was concerned for his personal safety after handing down this decision. The judge said he hadn’t received any harassment and was quite surprised at the question.

While the judge won’t be getting any flowers for this verdict, Roger Wallis who spoke in favor of The Pirate Bay at their trial and received a mountain of floral tributes in return, noted, “This will cause a flood of court cases. Against all the ISPs. Because if these guys assisted in copyright infringements, then the ISPs also did. This will have huge consequences. The entire development of broadband may be stalled.”

Peter Sunde characterized the verdict as ‘unreal’ and said that he didn’t expect the jail sentence. He briefly spoke with Fredrik and Gottfrid and all were surprised with this outcome. In response to the fines Peter said: “We can’t pay and we wouldn’t pay if we could. If I would have money I would rather burn everything I owned.”

Sunde has already explained that this decision does not mean the end of the line in this case. There will be an appeal which means we are still far away from the ultimate decision – possibly years away. Any appeal from either side must be submitted to Sweden’s higher Court by 9th May 2009.

Rasmus Fleischer, one of the founders of Piratbyrån commented, “The sentence has no formal consequence and no juridical value. We chose to treat the trial as a theater play and as such it’s been far better than we ever could have believed.”

As for the fate of the site, Peter has already promised that The Pirate Bay will continue. The site itself was never on trial, only the four individuals listed above.

This is a breaking news story, please check back frequently for updates.

Source

Originally posted 2009-04-17 08:20:23.

Popularity: 1% [?]

I’ve never traveled through space at light speed, but I imagine that standing in this LED tunnel is pretty close to the dizzying experience. The video is just plain awesome.

The name of the installation is Multiverse, and it was installed by artist Leo Villareal in a 200-foot-long tunnel in the National Gallery of Art in Washingtong DC. The entire thing features 41,000 LEDs that animate and move on their own, using randomness to ensure that no one will see the same configurations twice. Multiverse will be on display throughout 2009.

Source

Originally posted 2009-02-25 12:42:50.

Popularity: 3% [?]