conficker... overhyped?
There is a really great list of repair tools for the conficker worm here on the conficker working groups site and they have a pretty cool infection test.
I personally think the conficker worm is overhyped. The two main methods of infection have both been patched. Those two methods being a buffer overflow in the services process (which was patched way back with MS08-067) and the Autorun vulnerability (i mentioned that earlier in the blog). If your network admin is worth his salt then you have nothing to worry about because the risk is easy to mitigate. Home users are also probably safe if auto-update enabled and autorun has been disabled.
It also bothers me a little when i see the alerts go off like this for a threat that is overhyped. Why are they raising red flags now and not six months ago?
I personally think the conficker worm is overhyped. The two main methods of infection have both been patched. Those two methods being a buffer overflow in the services process (which was patched way back with MS08-067) and the Autorun vulnerability (i mentioned that earlier in the blog). If your network admin is worth his salt then you have nothing to worry about because the risk is easy to mitigate. Home users are also probably safe if auto-update enabled and autorun has been disabled.
It also bothers me a little when i see the alerts go off like this for a threat that is overhyped. Why are they raising red flags now and not six months ago?
Comments