Expert says pirates are Conficker's early victims

The highly anticipated and dreaded Conficker worm was expected to wreak havoc on millions of PCs across the world, but as clocks ticked into the first day of April, the worm seemed to come and go without any major incidents.

CTV Newsnet: Tech expert Kris Abel on the Conficker worm and whether or not computers are still in danger

With the Conficker computer virus going online Wednesday, many are wondering if their computers are still in danger, even if they weren't infected.

CTV Newsnet: Brian O'Higgins, technology security expert, on what to expect from the Conficker computer worm

The Conficker computer worm has been unleashed, and while nothing exciting appears to be happening, there is a very good chance it will do something big at a later date.

CTV Ottawa: Paul Brent on the threatening computer worm

It appears that many of the earliest victims of Conficker -- the dreaded computer virus that is supposed to switch into high gear on April Fool's Day -- are computer users with pirated copies of Microsoft Windows operating systems.

Watch: See all Videos in the Player

A A | Email This Email | Print | Comments (39) | Add Comments Tweet

CTV.ca News Staff

Date: Wed. Apr. 1 2009 11:06 AM ET

Brian O'Higgins, chief technology officer at computer security company Third Brigade, says the much-talked-about computer worm has efficiently spread itself out across some 10 million worldwide computers, many of which are located in Asia and Europe.

And because many users in these regions use machines with pirated copies of Microsoft operating systems, they may not be receiving the anti-virus update services that licensed Windows users are provided with. And as a result, they may be the most at-risk users.

"It turns out in Asia and China, Russia, India, Brazil, Argentina, these are the areas where a lot of the worm lives," O'Higgins told CTV Newsnet on Wednesday morning.

"There's many more copies of pirated versions of the Windows operating system and those tend not to be patched as often, and that's where it (Conficker) grabs a foothold."

Users that receive regular updates and security patches from Microsoft should be fine, O'Higgins said.

He said it is impossible to predict when the stealthy worldwide worm will turn itself on.

"It's sitting there, kind of, trying to be quiet, so it doesn't call a lot of attention to itself, so you don't notice that it's there and will recognize an infected machine and take it off," O'Higgins said.

"It's waiting: it's going to make money for the people who put it out there -- and what they're going to do with it and how and when, we're just going to have to see."

The worm works by blocking user access to Microsoft and anti-virus software sites, so that it can entrench itself in a particular system.

That's when Conficker can take hold of a computer and get it to send out spam, employ it in identity-theft scams or use it for other purposes.

According to the latest Conficker code, April 1 is supposed to be the day that infected computers "phone home" for new instructions and ramp up their level of online activities.

Microsoft has offered $250,000 for anyone who can provide information to the arrest and conviction of the person or persons who designed and distributed Conficker.

With files from The Associated Press

Add New Comment ( )

Jason Brunette, Ontario
said
0 0

I've never owned antivirus software, or whatever you paranoid people call it these days. . .

I've used a Mac OS for over 15 years and never had to buy any 'fixit' software.

It's always worked well and hooks to any printer or device with ease. Smooth and easy, making the workflow efficient. What more do you want? Flashing lights and popup messages to distract you?

People keep buying Microsoft Windows and Loading it with Antivirus software that never really works anyway.. .

Am I the only one who sees something wrong here?!!!

Dan from Northern Ont
said
0 0

No one uses Macs or Linux, THAT'S why viruses don't target them. Even if they are more secure, the fact of the matter is that more OS features = more vulnerabilities. Plain and simple. People could migrate to another OS, but then it would have the same issues as Windows. I mean I could switch to a Solaris machine and never get a virus, but that doesn't mean it's better option.

Jason Brunette, Massey, ON
said
0 0

$250,000. is peanuts compared to the damage it costs out there.

I think Microsoft has just tipped a waiter with 3 pennies!

What a cheap reward.

satellite
said
0 0

@rose
The fact that you bought a computer second hand from a crooked salesman doesn't indicate any wrongdoing on Microsoft's part. You wouldn't accuse the government healthcare system for malpractice after getting a disease from a needle 'prescribed' to you from a guy practicing medicine out of the trunk of his car, would you?

At least it'll be a valuable lesson for your sons. Buying computers second hand isn't worth it when you can buy a brand new basic system for $300 at a real store, legit OS included.

(and just because the copy of windows wasn't pirated, doesn't mean it was 'legit'. Standard license keys are single use, and the crook running that store was probably using the same one on multiple machines to save money)

J
said
0 0

My anti-virus software scans each time I log in and I've added a daily scheduled scan just in case. But no problem so far I have the tools to prevent this junk.

Mike
said
0 0

@Moonbeam: "...Just how dumb do they take people for".

Well, how many people actually bought Windows operating system instead of Linux or Mac... that's how many got fooled!

doug zwicker north bay
said
0 0

I use a legal copy of XP. For all those who are mad at people who use a pirated copy of XP think of this. XP PRO costs over 300 dollars. Mac OS X 99 dollars. Why is there such a price difference? We are paying for Internet Explorer, Hotmail, and all the other stuff that does not work well. I have never seen Windows Defender catch anything lol. Microsoft has a monopoly and can keep selling us crap

Matt
said
0 0

Ted
Couldn't possibly agree with you more. Been using different releases of Fedora for years, way better than the lousy windoze operating systems.

Mike Webster, Mississauga
Is MS paying you to say it's products are secure? The only reason MS would release patches faster is because most of the patches they release have security holes themselves. The only reason most people would use windoze is because they don't know how to use Linux or Mac.

Vista is the lousiest os I've ever tried.

Moonbeam...
said
0 0

Hahaha...Microsoft trying to frighten people into believing that someone with a bad copy of windows is at risk....utter nonsense of course.

I would imagine anyone who pirates windows, could pirate an anti-virus too....

Just how dumb do they take people for.

David from Alberta
said
0 0

My computers are running great today protected by Norton. I get a kick out of users who complain that the virus software is to blame as most don't update daily after the first install. That is why I fought with beta testing to have virus protection update itself. Not relying on poor judgement of users who blame software. If you get a virus these days, it's likely your own fault for clicking on a linke or opening something you shouldn't. Most likely your in places that you should not be. Updates are there for a reason why not use them. Oh BTW I have used Norton/Symantec for over at least 15 years and no problems.

Mike
said
0 0

Sounds to me that Microsoft may be behind this worm in order to discourage pirated copies.

Could it be??

BTW: Next computer I get will be a Mac. I am finally totally fed up with the crappy buggy operating system Microsoft puts out time and again and all you ever do is upgrade the lousy system because MS never gets it right the first time.

Allan M
said
0 0

In a sense, by denying 'licensed' versions of Windows the ability to dynamically update itself to keep in front of 'built in security vulnerabilities', Microsoft is using worm-epidemics as a gun to the head of the general public. If Microsoft made a 'sound' operating system that didn't require these updates, they'd lose incentive put on consumers to pay for their over-priced product.

Simply put: If it wasn't for Windows being so widespread, these virii (viruses) would have much less ability to spread and proliferate. Microsoft is creating a world wide security threat in an attempt to protect it's revenue stream.

Paying for software is important to me personally. But that doesn't protect me from epidemics created by Microsoft's shoddy operating systems.

John Frum
said
0 0

Mike Webster: You're right. Who cares that this doesn't affect Linux or Mac users? It's irrelevant. The important thing, as you point out, is that it isn't worthwhile for virus users to produce viruses for those systems. What matters most is that Microsoft is "far quicker to report and repair the type of defect that hackers and virus writers exploit."

Isn't this like choosing a Ford over a Mercedes because, "it may break down more often, but gosh, there are so many more repair shops, and they get to the jobs so fast!"?

Cost of ownership's the thing, Mike. Cost to purchase + cost to maintain - price to sell. Not just the simpleton's "cost to purchase." You might be surprised to discover which is actually the less expensive product.

Kevin
said
0 0

so Somalia pirates are the only ones to get the conficker worm? thanks CTV I live in Toronto and I dont have a vessel to be boarded. Guess I should be fine.

Kevin
said
0 0

Please read the definition of 'pirates' and rewrite your article. Otherwise you are just proving your ignorance. Thanks.

Abba
said
0 0

I got this virus a few days ago. It slowed down my internet and pc. My system process % was at 100% constantly.

After doing some research, i came across a few solutions out there. I scanned my system with various antivirus programs and it appears i removed the virus. Everything seams normal again. I guess Microsoft won't be getting my money. teehee

Evan in Athabasca
said
0 0

Wow, this is a brilliant plan on Microsoft's part!!

They infected all users that have pirated copies of software not legitimately purchased!! Too bad so sad in my view, I do not blame Microsoft if they did this.

BRAVO!!!

Linux 8.04 Ubuntu performs like Vista with security features, but runs and loads faster with way cooler eye candy options!!

Apple OS is way worse for upgrade than Microsoft will ever be!!

Lex Eagle
said
0 0

This Virus seems to have Microsoft written all over it. The virus only targeted people with pirated copies of MS windows????

This is like murdering your evil twin brother and offering $250k reward to find the killer.

Richard in Vancouver BC
said
0 0

got fed up with this and all the problems with Windoze, so I bought a mac. I enjoy using my mac, and no problems at all!

BC Wet Coaster
said
0 0

If you're using Microsoft Windows, it's your own fault if you get infected. Apple's Macintosh and Linux (e.g. Ubuntu) are much better options which do not suffer from viruses.

Terry
said
0 0

>Mike in ON
so, in addition to having a messed up computer, will those with pirated OS's be charged with software piracy?

Yes, Bill Gates will fly to China and bust them all personally... (you're kidding, right?)

Rob
said
0 0

I'm glad that this worm is going after computers with pirated software. I'm tired of the free ride that certain people get on the backs of honest people who pay legitimately for products and services. If only there could be a worm to go after people who avoid paying their share of taxes so that honest people would not have to cover the burden of the cheats.

Robert - Niagara Falls
said
0 0

Hmmmm. just off the wall thinking here. if this worm will affect a lot of users using pirated MS software and they would need to buy legit stuff is microsoft the victim? or ....? it is the 800 pound gorilla in the room.

Dan
said
0 0

Well people it looks like SKYNET is finally coming online. It's only a matter of time before the Terminators come get us all.

Terry from Vancouver
said
0 0

@david

The only Anti-Virus solution that MS has on the market currently is Forefront .. which is a colleciton of differnet Anti-Virus engines from diff providers and is typically used by enterprise customers, not end-users. Unless you mean the Malicious Software Removal Tool, which is not considered to be an Anti-Virus Application.

I think you are refering to Windows Defender, which is an Anti-Spyware product, not AV .. which i would agree with you on.

@Western Observer
There are a number of different variants of Conflicker, each with a different payload. You probably had A or B

As long as your systems are patched and have some Decent Anti-Virus proection you should be fine. We've had a lot of warning about this particular virus and a patch from MS that has been available since October (MS08-067).

rose
said
0 0

Hey satellite, my sons got screwed on a legit copy of windows. My kids scrimped and saved to buy a second hand computer (I am a single mom on disability) with XP pre-installed. One week ago a warning shows up on boot up saying our copy of Windows isn't valid. The company the computer is bought from is now out of business and the computer manfacturer says the computer is out of warranty, so they won't help.

Microsoft is perfectly willing to help IF I will pay $300 for support or $500 to purchase a registration key. They have confirmed that the registration on this copy is VALID, but only with the original purchaser.

And yes, Conficker is on the computer now because my kids VALIDLY registered, but no good, copy of XP will not download updates.

Terry just looking out for you..
said
0 0

Every year a new worm or virus hits the online world if you have an updated OS or have a new system like Vista or a MAC you should not be in any danger of getting this so called worm, my suggestion to you all (DON'T WORRY about it) just keep your nose clean and you will be just fine.

Have fun today go online, check your e-mail send pictures of your family just don't worry about it.
Safe surfing.

satellite
said
0 0

All these accusations of Microsoft creating malware are getting old, and are generally spawned from ignorance and baseless speculation. They spend millions of dollars researching fixes for these vulnerabilities, and release these fixes for free to legit users. Spreading worms is very little deterrent to software pirates in china, and would in no way result in an increase in Microsoft's bottom line. Users of pirated windows will just reinstall their pirated copy of windows. This worm can just as easily infect fully legitimate copies of windows if users never get updates by choice, how is that remotely profitable for MS since any support they provide these users is free?

I fix 'em
said
0 0

Doing the worm: Tweak in 'Conficker' sparks fears

In this article Symantec put in their 2 cents worth and being one that USED to rely on them for protection find their comments a joke.
They have never updated enough as I lost two hard drives using their anti-virus that caught squat!
Trend micro is the safest bet for those that purchase security and the free ones you download do at your own risk. AVG won't update efficiently, there is always some sort of error. Avast seems quite good though.
Basically down loader beware of FREE anti virus software as it is free for a reason.

Steve B
said
0 0

Ted:
I've been using Ubuntun Linux for a year. I'm with you 100%.

Mike Webster, Mississauga
said
0 0

@S. Jobs, Cupertino CA and Ted....the only reason that this doesn't infect Linux or Mac is because so few people use those systems that it isn't worthwhile for most virus writers to produce viruses for them. Windows is targeted not because it's insecure (it isn't) but because it's what the vast majority have. In actual fact, if you look at security vulnerabilities and patches for those bugs, Microsoft trounces Apple - they're far quicker to report and repair the type of defect that hackers and virus writers exploit.

As far as those who produce the viruses and who hack into other people's computers, governments need to start treating that behavior as the serious crime that it is. People who engage in such activities should be severely punished for it. While I'd love to see them face summary execution in a public square, that isn't going to happen so I will settle for long and arduous priosn terms for such miscreants.

S. Jobs, Cupertino CA
said
0 0

That's funny, my four MACS are running strong today, and virus-free!!! Tee hee!!!

david
said
0 0

anyone whom depends upon microsoft for their systems anti virus solution deserves what they get...testing results have consistantly shown that the ms solution is better than none at all, but ineffective compared to other third party solutions.

acceptable freeware results have been achieved both by avg free and avast for those unwilling or unable to pay for better product.

this article has no basis in context whatsoever. even if a system is found when connecting to windows updates to be unauthorized, it is still able to download critical updates for the os and the anti virus signature updates provided by microsoft. obviously written by someone whom knows little or nothing.

david
mcp, mcse, novell, cisco, a+
IT company owner

Odd
said
0 0

It seems to me that Microsoft would be more likely pay a REWARD to anyone who could infect non-licensed software.

Tom Hanna
said
0 0

$250,000, that is pretty safe money for Microsoft! They have been accused of creating these virus' before. This time all we are missing is the smoking gun.

netizen
said
0 0

I have always been suspicious of the origins of malware. It never made sense that someone would develop something without a profit that was as sophisticated as computer virii are.
This event and the results of pretty much taking out only "illegal" software confirms that it is really Microsoft and the anti virus makers that are creating these things.
Microsoft wants to force every one to buy a new OS every 2 or 3 years and there would be no need for malware protection if there was no threat. So they created a threat that also takes out "illegal" windows OS.

Ted
said
0 0

Another reason to give Linux a try.

I've been using Open SUSE 11.1 for a few weeks. No issues, crashes or virus infections.

Much better than the old Linux stuff from just a couple years ago. Finds all the hardware and has lots of apps that will use Microsoft files.

Western Observer
said
0 0

This worm ate my hard drive last fall, long before the April 1st date. Where do these guys get the date from? What a bunch of BS, just to get their name in the paper!

Mike in ON
said
0 0

so, in addition to having a messed up computer, will those with pirated OS's be charged with software piracy?

Most Viewed News Stories

View More News Stories

Most Talked about Stories

If there weren't so many people who hide their faces when committing violent acts then we wouldn't need a law forbidding masks. Unfortunately this is our society now. No one can hide their faces... we aren't special over here, violence has arrived and it is here to stay. Let's not kid ourselves. Violence just escalates to new levels. We've let this "hiding the faces" scenario go on far too long.

KC

Montreal bylaw could offer preview of federal mask ban

Got something to say? Share on CTV News

Pick your location

Top Stories -

News Sections

News Programs

Features

Browse: