On January 13th we raised the alert level for the Kido family to orange: moderate risk. It’s been quite a while since an ‘old school’ network worm has caused such a stir – Kido’s managed it by not only relying on critical Windows SMB vulnerabilities to spread but it also bruteforces weak passwords in order to gain access to other machines in a local network.
Because of this (along with a few other things) Kido can be very painful to get rid of. That’s why we’ve decided to release a free tool which can be used to clean infected machines.
You can grab our KidoKiller tool here.
Feel free to give it a try.