You are here: silicon.com > Software > Malware

Conficker: So what's the moral of the story?

Why despite the hype, the worm still matters

Tags: malware, virus, worm, conficker

By Elinor Mills

Published: 3 April 2009 08:59 GMT

1 April has come and gone and in the minds of many people the Conficker worm turned out to be a joke instead of the major internet security event that might have been envisioned. Was the hype good, or bad, and who is to blame?

"I'm not sure what to think," said Bruce Schneier, chief security technology officer at BT. "In a sense, the whole Conficker thing just puts a name on a general problem."

The problem is that there are tons of malicious programs and attacks out there on the internet every day and people don't do enough to protect their computers, experts say. People need to be vigilant in patching their systems and updating their antivirus and other security software all the time, and not just when there is a virus outbreak. This isn't new at all.

Lots of other worms and botnets are doing real damage, experts say, but Conficker garnered the media attention because it was configured to activate on a certain date. The fact that the date happened to be April Fools' Day only lent to its mystique.

"You need something with a name and a date to make the news. Today, the problem is just as serious, but there's no news," Schneier said.

Dave Dittrich, an affiliate researcher at the University of Washington, added: "The focus on 1 April ignored the fact that malware is out there and it is not detected easily and it has counter measures,"

People tend to blame the security vendors for hyping viruses so they can sell more products. But in this case, everyone silicon.com sister site CNET News.com talked to about Conficker downplayed the digital disaster scenario and said things would likely be fairly quiet on 1 April, as they were.

Media culpability So were the media guilty of overhyping the story?

"Tight deadlines make it hard to get a good story out without the hype taking over," Dittrich said. "There was a known deadline of 1 April for some behaviour changing, but it wasn't clear what that behaviour was going to be."

But just like the boy who cried wolf too many times, the experts said they worried that conflated expectations that are not met could mean people will ignore legitimate threats in the future.

Simple concepts of good and bad are easy to understand, while complicated issues and relative conditions, which underpin security, aren't. For instance, Dan Kaminsky, director of penetration testing at IOActive, said he often finds himself trying to talk people down off of one of two "ledges" of thinking.

"It's either 'nothing is going to happen', and that's not true, or it's 'the world is coming to an end and computers are going to explode in some technological Ebola equivalent,' and that's not true either," he said. "Concern, but not panic, is really the appropriate engineering response to the problems of this nature. But concern doesn't sell nearly as well as panic."

Hype is one thing. Public awareness is another, and if nothing else, all the attention Conficker garnered can be seen as a benefit if it means that more people were prompted to secure their systems.

"When you see your neighbour with a cold, you think about washing your hands," said Chris Wysopal, chief technology officer at Veracode.

"The main lesson is that reactive security is always bad," said Wysopal. "This is the case we're seeing here. Once the botnet is spread it is really difficult to...

Previous

Page 1 of 2

Next

Add comment Print story with Email story

Share this article:

Digg

Slashdot

Del.icio.us

Stumble

Reddit

Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy

Conficker virus hits Parliament PCs

Conficker worm strikes again with fresh strain

Microsoft puts $250,000 bounty on worm-creator's head

Microsoft offers $250,000 reward to find worm creator

PCs at five hospitals struck down by virus

In silicon.com

Zones

Management

Networks

Software

IT Services

Hardware

Verticals

Public Sector

Financial Services

Retail & Leisure

Newsletters

RSS Feeds

Site map

Commentary

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business

More Commentary

RSS

Latest News

Second iPhone worm: A botnet risk

Phishers set their sights on corporate accounts

Tax-refund phishing scams hit an all-time high

First critical Windows 7 patches released

Online fraudsters enlist Trojans to run off with your money

More News

RSS

Jobs

Site Supervisor (Satellite Earth Station Installations)

This may require obtaining weather forecast data so that additional measures can be taken in the event of adverse weather, i.e.lightning and high ...

Compliance Officer

Compliance Officer Location: City, London Salary: 40k plus Company: McGregor Boyall Job type: Contract Description: A leading Global Investment Bank ...

Infrastructure Engineer

You will need to have in depth technical knowledge but also be able to engage with clients both face to face and via the telephone.Required ...

Special Report Focus

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

More Special Reports

RSS

White Papers

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Virtual Private Servers (VPS)

Looking for a fast payback? 10 Minutes with Free Tool Can Save Thousands

The Truth About Wasteful Spending on Software: How to Stop Giving Your Software Vendors...

More White Papers

RSS

Latest Video

Most Popular

All Video

Peter Cochrane's Video Blog: Tapping into London's 20Mbps broadband

Video: 60-Second Pitch: End-point security

Video: 60-Second Pitch: Unified communications

Video: 60-Second Pitch: Fixed mobile convergence

Video: 60-Second Pitch: Hosted applications

The secret of good leadership

60-Second Pitch

CIO Interviews

CIO Masterclass

Latest videos

Most popular videos

All silicon.com videos

Cheat Sheets

Google Chrome OS

The Kindle, Amazon's e-book reader

Outsourcing

Augmented reality

Symbian

Apple iPhone

More Cheat Sheets

Case Studies

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

More Case Studies

RSS

silicon.extra

Stories from the web...

Streaming music: even better than the real thing?
The Guardian

Children spending half as much time in class as they do looking at screens
The Times

CXOs unplugged: John Timpson
BNET.co.uk

C K Prahalad: Are Your Business Beliefs Outdated?
BNET.co.uk

More silicon.extra stories

Latest News

ID card database: 500 names added in first month

Women in IT: Tech has an image problem

Tesco Mobile to get a taste of Apple's iPhone

Marketing chiefs: Are you spamming your customers?

IT skills shortage squashed by recession?

Users tell SAP: 'We need to talk more'

More News

RSS