Summary: When tools for fighting against Conficker only run on GNU/Linux

C OMPANIES WHOSE machines leak sensitive data, attack other machines, and cause other forms of sabotage need not fret. They can finally assess the damage already done, if any. They will, however, need to get hold of GNU/Linux first.

To help companies detect Conficker scans and probes on their networks, MicroSolved is offering a free tool – a Linux-only HoneyPoint GUI. You can download the zip file from here.

Isn’t it a classic? GNU/Linux is required for repair of damage caused by a Microsoft Windows-exclusive problem. Conficker is still very much alive by the way. From the latest news:

1. Conficker: The Windows Worm That Won’t Go Away

The Conficker worm continues to slither its way across the Internet, and a major update for the malware is looming on April 1. Just what will happen is anyone’s guess, security researchers say, but there are malware removal tools and protections out there for users.

2. Final countdown to Conficker ‘activation’ begins

Starting on 1 April, Windows PCs infected by the latest variant of the Conficker worm (Conficker-C) will start attempting to contact a sample of 50,000 pre-programmed potential call-home web servers from which they might receive updates, a massive increase on the 250 potential web server locales used by earlier variants of the code.

To diagnose the problem, a GNU/Linux-based HoneyPoint can be used, but why not address and resolve the problem at the source? As we explained before, "Conficker is a Blessing to GNU/Linux." Those who want to resolve the problem for good can prepare for a migration to GNU/Linux. It has already saved the French police a bundle. █

More on Conficker

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.





Permalink Send this to a friend