Conficker: Why I can’t tell you what it will do on April 1st

Graham Cluley
@gcluley

There’s been a lot of media interest in the last few days regarding what the Conficker worm might do on April Fool’s Day.

Well, here’s the bad news. I’m afraid it’s not possible for us to analyse any potential payload as it is not yet present in the Conficker code.

Some people have got rather confused as to what the April 1st deadline really means. The truth is that Conficker is not set to activate a specific payload on April 1st. Rather, on April 1st Conficker will begin to attempt to contact the 50,000-a-day potential call-home web servers from which it may receive updates.

So, setting the PC’s clock forward to April 1st will not allow anyone…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.


Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.