Kido/Conficker: a sobering thought

02 Apr 2009

minute read

Authors

Roel Schouwenberg

It’s the second of April all over the world and the Internet still works. So far so good. 🙂

There’s been a huge amount of attention around Kido/Conficker/Downadup this week. As the vast majority of experts anticipated nothing happened on the first of April.

All the hype actually reminded me of Sober, which strangely enough didn’t get mentioned in the tons of stories I’ve been reading over the last few days. Just over three years ago we were dealing with a big epidemic – Email-Worm.Win32.Sober.y. Costin wrote about it here.

When Sober.y was ready to update the whole world was watching, just like now. And, just like now nothing happened on the first day. It will be interesting to see where and when the parallels between this side of Sober and Kido/ Conficker will end.

A lot of the mainstream media have asked if the anticipated Kido update could just be a seasonal joke. The answer is a definite no. However, if you’ve heard rumours of the arrest of the authors – unfortunately, that was an April fool.

Authors

Roel Schouwenberg

Kido/Conficker: a sobering thought

Latest Posts

Latest Webinars

Reports

While monitoring the traffic of our own corporate Wi-Fi network, we noticed suspicious activity that originated from several iOS-based phones. We created offline backups of the devices, inspected them and discovered traces of compromise.

GoldenJackal is an APT group, active since 2019, that usually targets government and diplomatic entities in the Middle East and South Asia. The main feature of this group is a specific toolset of .NET malware, JackalControl, JackalWorm, JackalSteal, JackalPerInfo and JackalScreenWatcher.

Kaspersky analysis of the CloudWizard APT framework used in a campaign in the region of the Russo-Ukrainian conflict.

For more than five years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. These summaries are based on our threat intelligence research; and they provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports.

Kido/Conficker: a sobering thought

GReAT Ideas. Balalaika Edition

GReAT Ideas. Green Tea Edition

GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots

GReAT Ideas. Powered by SAS: threat actors advance on new fronts

GReAT Ideas. Powered by SAS: threat hunting and new techniques

ZeroLocker won’t come to your rescue

A Post-PC BlackHat?

Adobe Updates April 2014

Trust. Trust. Trust

Adobe’s First Patch Tuesday of 2014

How much security is enough?

TOP 10 unattributed APT mysteries

The future of cyberconflicts

Researchers call for a determined path to cybersecurity

What does it take to become a good reverse engineer?

Latest Posts

Satacom delivers browser extension that steals cryptocurrency

In search of the Triangulation: triangle_check utility

Operation Triangulation: iOS devices targeted with previously unknown malware

Meet the GoldenJackal APT group. Don’t expect any howls

Latest Webinars

Cyberthreats to modern automotive industry

Applying ATT&CK to analyze ransomware campaigns

Ransomware trends in 2023

Cryptocurrency Threat Landscape Trends in 2023

Reports

Operation Triangulation: iOS devices targeted with previously unknown malware

Meet the GoldenJackal APT group. Don’t expect any howls

CloudWizard APT: the bad magic story goes on

APT trends report Q1 2023

Subscribe to our weekly e-mails