Surviving Conficker Worm
Conflicker did not unleash a global attack like SQL Slammer- a worm that crippled the Internet in 30 minutes. But, it isn’t because it wasn’t capable per se.
The fact is that crippling the Internet is not a smart business model. It is like showing your hand in poker. Right now there are somewhere between 3 million and 15 million computers compromised by Conficker. Both numbers are big, but the larger point is the range in the estimates. Give or take 12 million PC’s, nobody really knows how big the threat is. There are 12 million PC’s that might be infected, or maybe not.
To unleash the global Conficker army in some sort of massive April Fool’s Day prank that grinds the Internet to a halt just for the sake of doing so might have entertainment value, but it doesn’t generate revenue. What it would do is to help identify the compromised machines, enabling them to be cleaned and patched, and help wipe out the threat. The Conficker creators have a business interest in flying under the radar so they can live to fight- and profit- another day.
So- nothing really happened on April 1st. Does that mean that we can just forget Conficker ever existed and move on? Absolutely not. The fact that nothing visible occurred from Conficker on April 1st means that there are still millions of PC’s- somewhere between 3 million and 15 million- compromised with Conficker. They can send out spam. They can host malware. They can be used in a botnet denial-of-service attack. They are a mercenary army of malicious PC’s for hire.
What should you do?
1. Check your system to see if it is infected
2. Make sure your PC has the MS08-067 patch applied
3. Ensure you have security software installed on your PC and keep it up to date
4. Read this site on a daily basis to stay informed 
.
