Widespread Infection of Win32/Conficker/Downadup Worm

Antivirus Advice for Computer Protection on the Internet

:: Apple Releases QuickTime 7.7.2 :: Google Releases Google Chrome 19 :: Apple Releases Multiple Security Updates :: Adobe Releases Security Bulletins for Multiple Products :: Apple Releases iOS 5.1.1 :: Adobe Releases Security Advisory for Adobe Flash Player :: Microsoft Releases May Security Bulletin :: Microsoft Releases Advanced Notification for May Security Bulletin :: Microsoft Releases Advance Notification for May Security Bulletin :: Google Releases Chrome 18.0.1025.168 :: RuggedCom Rugged Operating System Vulnerability :: DNSChanger Malware :: Oracle Releases Critical Patch Update for April 2012 :: Apple Releases Flashback Malware Security Updates :: Apple Releases Flashback Malware Security Updates :: HP ProCurve 5400 zl Switches Security Bulletin :: Samba Releases Updates for 3.0.x - 3.6.3 :: Adobe Releases Security Bulletin for Adobe Reader and Acrobat :: Microsoft Releases Advance Notification for April Security Bulletin :: Microsoft Releases April Security Bulletin

US-CERT is aware of public reports indicating a widespread infection of the Win32/Conficker/Downadup worm. This worm exploits a previously patched vulnerability addressed in Microsoft Security Bulletin MS08-067. This worm attempts to propagate via multiple methods including removable media.

US-CERT strongly encourages users to review Microsoft Security Bulletin MS08-067 and update unpatched systems as soon as possible.

Additionally, US-CERT recommends that users take the following preventative measures to help mitigate the security risks:

Install antivirus software, and keep the virus signatures up to date.
Review the Microsoft Malware Protection Center blog entry for details regarding the worm.
Review the Using Caution with USB Drives Cyber Security Tip for more information on protecting removable media.

Read more: US-CERT Current Activity

Today's Internet Security Alerts

SANSFIRE 2011
SANSFIRE 2011
(1) HIGH: Google Chrome Sandbox Escapes
...
(2) HIGH: Microsoft Remote Desktop Protocol Vulnerability
...
(3) HIGH: Mozilla Firefox Use-After-Free Vulnerability
...
2.8 Mozilla Firefox/Thunderbird/SeaMonkey "shlwapi.dll" Use-After-Free Memory Corruption
...
12.11.11 IBM DB2 Multiple Security Vulnerabilities
...
12.11.12 IBM Maximo Asset Management Multiple Security Vulnerabilities
...

Popular Words in Security Alerts
untrusted federal unauthenticated addresses affects including blackberry vulnerabilitycisco business mozilla manager connectivity device disable buffer