January 30, 2009
Malicious computer software known as Conficker or Downadup has infected millions of computers worldwide and is gaining momentum. Some of the infections have occurred at The University of Arizona. Nearly all Microsoft Windows-powered computer can be compromised by Conficker. Computer security researchers expect that Conficker will enable unauthorized people to gain control of infected computers and the data on them.
Conficker spreads in several ways. If an infected computer is connected to a network, Conficker will immediately scan the network looking for a particular vulnerability and use it to gain access to another Windows computer. It can also gain access to a networked computer by guessing the password. Lastly, it can copy itself to any removable USB-based device, such as a flash drive or camera. It is then executed when inserted in another computer that has been configured to automatically play USB-based devices. This flexibility means that more than one defensive measure is needed to minimize the risk of infection.
Windows users should implement the defensive measures listed on the Information Security web site, http://security.arizona.edu/conficker. The site includes links to instructions and tools.
