Conficker has been (and still slightly is) making an impact on the security world. It has been spreading over the world infecting many systems. Even today we still see infection reports of Conficker. In 2008 the Conficker Working Group was created between security organizations and individual security-specialists to fight Conficker. It was a large task with malware that starting to connect to 500 randomly selected domains, taken from a list with 50,000 randomly generated ones. You can read Norman’s write-up here…
In 2009 the United States Department of Homeland Security funded the project “Lessons Learned” to document all actions taken, all remedies, all pitfalls, etc. to be used as guidelines in case a similar type of Conficker outbreak will happen in the future.
The Conficker Working Group’s homepage is here and the document can be downloaded here…
Of course you should read the entire report as it has good suggestions. As a closure, here is the conclusion:
Full story: Norman’s security blog
Related Posts
- Conficker Working Group Lessons Learned Document
On the Conficker Working Group’s website, the Lessons Learned document has finally been made public. Sponsored by the US DHS, with key efforts at getting it written from Rick Wesson and David Da... - HBGary hack: lessons learned
Unless youve been living under a stone for last couple of weeks, you heard about the HBGary Federal hack. Seeing everything that was published about this probably make every security professional thin... - From XSS to root: Lessons Learned From a Security Breach
In an excellent blog, the people from Apache did a very good job analyzing and documenting how a security breach happened–going through all the stages of the attack and drawing conclusions. Shou... - Wikileaks: Lessons Learned
I've spent the past couple days in our nation's capital, and it seems that everywhere I go, someone wants to know what I think of the Wikileaks scandal. I'll tell you at the end of this article. Fir... - Hacker Group Changes Millions of Passwords to “password”; Only 38% of Users Notice
Passwords from over 3,000,000 user accounts were apparently set to "password" late last night in a wide-spread hack that affected hundreds of news, retail and Web 2.0 sites. Most affected user... - 6 Tips for Hiring and Working With Security Consultants
Sometimes organizations need outside help for getting their arms around information security challenges. That’s where security consultants come in. Here are a few tips for making sure that engaging a... - Lessons to learn from the HBGary Federal hack
The Anonymous attack on HBGary Federal may have amused some who enjoyed the sight of a security firm left embarrassed and exposed, but it should send a shiver down the spine of any IT administrator re... - Breaking news: Conficker became self aware!
This is what security experts around the world have feared for a long time. The conficker worm botnet grew big enough and 1 minute past midnight, on April 1st, it finally gained consciousness. (more&#... - ALERT: Starcom Mediavest Group are being impersonated
The real Mediavest domain is mediavestww.com (note the ww). The impersonators are using mediavestw.com (note, just one w) mediavestw.com ICANN Registrar: Melbourne IT, Ltd D/B/A Internet Na... - Another M00P Group Member arrested
Pardon me while I have a Matrix-moment imagining this conversation. Matthew Anderson is sitting in a small room, and Detective Constable Bob Burls is flipping through the charges against him. "Miste...
Posted on 30 January 2011. Tags: Conficker, Document, group, Learned, Lessons, Working
