Downadup - Largest Worm Infection Since 2001 Hits Corporate Networks

A sneaky, fast-spreading computer worm known as Downadup (or Conficker or Kido) is exploiting a security hole in Microsoft Windows to infect millions of PCs in mainly corporate networks. It is considered the largest and most serious corporate virus outbreak since Nimda unleashed its fury in 2001. It appears Downadup may have been created to generate income for people who get paid to install rogue antivirus software called "scareware."

The worm can spread three ways:

It attacks a vulnerability in the Microsoft Server service. Computers without the latest Microsoft security patch can be remotely attacked and taken over.
It can scan company networks and attempt to guess passwords.
It can infect USB data sticks (also known as thumb drives). While almost all of the Downadup occurrences have involved corporate networks, it is possible for a home computer to be infected by the user's corporate PC via the connection of a thumb drive.
Microsoft released a patch to stop the Downadup worm in October 2008 called MS08-067. To download this patch, visit:

http://www.microsoft.com/technet/...

In January 2009, the high number of Downadup infections led Microsoft to enable its anti-malware utility, Microsoft Software Removal Tool (MSRT), to detect the worm. This optional component is updated monthly and can scan for and remove some of the most prevalent threats in circulation today. For details, go to:

http://www.microsoft.com/security...

As always, we recommend you use antispam and antivirus software, install a firewall, and keep operating system and browser software updated.