Conficker worm returns to attack photography enthusiasts

Malware discovered on film scanner software

Electronics accessory maker Hama has admitted that a 35mm photographic film scanner sold to German consumers over Christmas came with a software disk infected with the irrepressible Conficker worm.

Reported earlier this month but only noticed by eagle-eyed reporters now, the report on Heise Security said that the slide scanner, sold through the Tchibo chain for about £50 a shot, loaded the malware when the main executable was run.

Having appeared all of four years ago, the Conficker.b variant can be detected with any antivirus scanner but consumers should not underestimate the malware's ability to jump on to unprotected systems.

As is typical for worms that use storage to spread, it makes that leap via the Windows autorun routine.

Stories of malware turning up on commercial install disks are far from unheard of. But Conficker's story makes it one of the most mysterious pieces of malware ever discovered.

Set to activate on 1 April 2009 (although discovered in late 2008), and managing to infect millions of PCs, researchers never figured out what it was trying to do or who created it.

It remains an enigma to this day although there have been plenty of theories. It has even been claimed that Conficker was part of the US cyberwar campaign that included the equally odd Stuxnet discovered in 2010.

The belief that Conficker was part of a state-to-state cyberweapons campaign has gained weight with the revelation since 2009 of a clutch of programmes that bear some of its characteristic opacity and aimlessness.

To this day it remains a common if little commented upon threat in many countries' malware report tables.

Tags Personal Techsecurity

Comments

Comments are now closed

CSO Corporate Partners
  • f5
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Audit Management Solutions

Manage the complete audit lifecycle from audit universe identification and risk assessment to management/board reporting and quality assurance.

Security Awareness Tip
Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.