Conficker worm exploits Microsoft MS08-067 vulnerability

Graham Cluley
Graham Cluley
@
@[email protected]
@gcluley

Biohazard

Back in October I warned you about a critical security vulnerability found in some versions of Microsoft Windows.

Known as as MS08-067, Sophos published information about this serious vulnerability and warned of the potential for worms to be written which would exploit the security hole.

Yesterday, we began to receive reports of a new piece of malware (W32/Confick-A, also known as Conficker) that attempts to spread by exploiting this vulnerability.

Sign up to our free newsletter.
Security news, advice, and tips.

If the knowledge that Microsoft chose to release a security patch outside of its normal monthly cycle wasn’t enough to stir you into action, then news of the new worm definitely should. It’s always better to do everything possible in advance of a piece of malware being released, rather than mopping up afterwards.

If you haven’t already done so, get the patch from Microsoft, and make sure your anti-virus is properly up-to-date.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.