The INFORMER

I heard that last week the international community was hit by the worst virus attack in the history, this virus was launched by hackers to take over the corporate world. The worm is known with the names of Downadup, Conficker , or Kido -_- it has at least infected 8 million computers most of them were corporate computers. On Tuesday there were 2.5 million, on Wednesday 3.5 million and Friday, 8 million.It's getting worse, not better, right now 8.9 million is the estimated amount of computers infected.
The virus exploits multiple security flaws in Microsoft's Windows OS's. It injects into the system as services.exe, it is a common system process. It creates a new DLL file in Windows system folder with a random five letter name. It makes registry edits referencing this DLL as a service, so it’s automatically run on restart. Once it has its grips on the system, it proceeds to create an HTTP server and download malware onto the computer from hacker web sites. It wipes out the system restore with a reset, making it harder to recover the system. People who think their computer is secures should worry about this worm and should start protecting their computer's by updating their antivirus.

While many viruses download malware remotely from a handful of web sites, the installed files can be easily removed , this one is very hard to remove. This virus creates hundreds of dummy domain names using algorithm coded in the virus, with only one being the actual malware site. This makes it extremely difficult to search what exactly is being installed every single day. The worm's main way to get transferred to another computer is local area network. Once a computer has been infected on the network it searches for other computers on the network, and then it uses the a Windows security flaw to attempt to gain access to them.

While the computers are typically password protected, the amazing part is that the virus can guess short password by a random guessing method which is also known as brute force method. Once it has found the correct password there goes your pc. It infects the next computer and the next one and the next one there's no stopping it . Microsoft has a patch which protects against virus the attack -- MS08-067 --Companies are strongly recommended to get this patch as the virus is rapidly spreading across Europe, the United States, and Asia. The patch may slow the spread of the virus it may not be enough to stop it. The virus has been only used to inject malware into the pc but experts say that hackers could use it on the system to start stealing user's and customer's credit card and personal information.