The Worm

The Atlantic has a great story on the Conficker worm which I had heard about, but not paid a ton of attention to. Apparently the thing is pretty damn sophisticated and some of the smartest computer security folks in the world are trying to fight it (mostly to no avail). I especially enjoyed the game theory of the whole thing as both sides try to guess what the other is thinking the other is thinking:

I think they were trying something, and I think that they’re too smart to do what everybody figured they were going to do. You have to remember, the world was watching this thing and waiting for the world to end from Conficker on April 1, 2009. The last thing you’d want to do if you’re the bad guy is make something happen on April 1. You’re never going to do that, because everybody’s watching it. You’re going to do something when you’re least suspected. So these guys are sophisticated. They have good code. And just even seeing the evolution from Conficker A to B to C, where there’s the peer-to-peer component, which … strikes fear into the heart of botnet hunters because it’s just so damn difficult to track–these guys know exactly what they’re doing.

Also, ran across this test to see if your computer is infected. Godspeed.

[Via Metafilter]

May 16, 2010

Your email address will not be published. Don't sweat it.

Hi, I'm Noah. I am the co-founder of Percolate. I like writing on, thinking about and making stuff for the internet. I'm responsible for a few internet experiments like Brand Tags, likemind and My First Tweet. On this site I write about media, marketing, culture, technology and randomness. I like it when people email me.

Subscribe to NoahBrier.com by RSS or by email (in once-a-day digest form).

The drip denotes a curated post from Percolate. The comment is mine, the content on the other end of the link is not.

Comments

candice said:

Last spring, when the media blitz was at its peak, I happened to be taking a Reverse Engineering class in school, so I read the entire 70 (I think) pages of SRI technical analysis on it for homework, and then I read the followup about peer to peer later. It’s fascinating stuff.

The scariest thing about it is that it appears to have been written by actual programmers, like senior operating system architects and crypto guys. People who make really good money. Why do this?

The atlantic article screws up the encryption and why which algorithm matters, which annoys me, but it’s to be expected I guess. (Short version, MD6 is hashing, which is for verifying, not for encrypting. I’d have to look up the encryption algorithm.)

May 16, 2010 at 11:43 pm

Pedro Daltro said:

Thanks for the link, Noah. Great story.

May 18, 2010 at 10:51 am

Nathaniel Vert said:

I had a web site on this subject, but it got spammed so bad I had to shut it. You seem to be better at weeding out the spam! Well done!

July 26, 2010 at 11:20 am

The Worm

Leave a Comment

Comments