Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - SANS Internet Storm Center InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Conficker update with payload

Published: 2009-04-09
Last Updated: 2009-04-09 13:44:52 UTC
by Johannes Ullrich (Version: 1)
1 comment(s)

Various sources report that some conficker infected systems are receiving updates now. The update may include a keylogger and other code to exfiltrate data. We will keep this diary updates as we hear more. The update is delivered using the P2P mechanism and not the (disfunct) web sites.


Johannes B. Ullrich, Ph.D.
SANS Technology Institute     Follow me on Twitter

1 comment(s)
Diary Archives