Wednesday, March 25, 2009

Conflicker Protection

The hype and realities of the Conlicker Worm.

Yes folks, this is very dangerous worm. In fact Microsoft is offering a bounty for the capture and prosecution of the author!
But once again it's spread is caused by all the usual suspects - un-patched systems, out of date Antivirus and Antispyware software and POOR computing practices. The hype regarding the 'Conflicker' worm is real. But can be mitigated with a few prudent actions.
Here are all of the tasks that should be done. And when I say all, I mean ALL. Not doing one or two will leave you open to attack.

Disable 'Autorun'For XP, 2003, Vista and Win2000.
One of the first things I do on every system I build or manage, for over 14 years, is to disable autorun, and you should too. Microsoft has some simple 'patches' and instructions here:
http://support.microsoft.com/kb/953252

Make sure your antivirus is up to date - run a live update DAILY.
Run a full scan NOW and at least once a week.

Make sure your anti-spyware application is up to date - run a live update DAILY.
And run a full scan NOW and at least once a week.

Make sure your Windows is up to date - run windows update at least WEEKLY (Tuesdays are the day MS releases updates)
Download and install/run the latest MS Malicious Software Removal tool RIGHT NOW!!!!:
http://www.microsoft.com/downloads/details.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en

Use CCleaner http://www.filehippo.com/download_ccleaner/download/86e6a458e780243c3a944b66ec60b319/

to clean out temporary files at least once everyday.
I run it EVERYTIME I close my browser!

Never, ever install 'special viewers/browser helper objects'. By that I mean if a site tells you you have to download/install a plug-in to 'view/watch' a particular file - YOU DON'T NEED IT!

And finally make sure you change your passwords regularly, and make sure they are 'secure'; containing upper and lower case letters, numbers and symbols.

After you have done all of the above check out Microsoft's Conflicker page for some more great information.
http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx

If you follow these steps you should be OK.
Remember most 'hacks' happen because of user actions - being tricked/suckered into installing the trojan or by users not keeping their protection software and operating system up to date.
Don't become a statistic.

Good luck and safe computing.
Peace.

No comments:

Post a Comment