New Conficker variant

Filed Under: SophosLabs

If you regularly follow computer security related blogs you may have read that recently there was some discussion about a potentially new variant of the Conficker worm. SRI researchers, in their detailed and interesting analysis decided to call the new variant Conficker B++.

Admittedly, SophosLabs has been slow to discuss this new variant.

The reason? Well, it's very similar to variant B of Conficker, with a few changes, including the modified self-updating functionality. And the good news is that Sophos products detect this latest variant proactively, without requiring new updates, as Mal/Conficker-A.

SophosLabs researchers are currently analysing the new variant and will update the description of Mal/Conficker-A with the additional details soon.

You might like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Vanja is a Principal Virus Researcher in SophosLabs. He has been working for Sophos since 1998. His major interests include automated analysis systems, honeypots and malware for mobile devices. Vanja is always ready for a good discussion on various security topics.