Conficker and the Curious Yellow
I was not planning on writing another post so soon, but Utopiah here has referred a very nice article in his comments to my previous post. If you have not already read Brandon Wiley’s Curious Yellow: The First Coordinated Worm Design, I urge you to read it through.
It hits right on spot about fast distribution through a peer-to-peer network. I used the concept to hypothesize a patch propagation (described as an anti-worm by him).
The paper describes a scenario comparable to a powerful chess game turning the yellow worm to blue and backwards. Probably in recognition of this idea, Conficker uses latest encryption , very likely making a first field implementation of the MD6 algo and its fixes too!. It appears that the Conficker writer is very well versed with this paper and current technology 🙂
Besides the points made by Wiley on that page, there is one more ‘common goal’ such a network can target, and I am sure its already stated somewhere: These compromised systems can be pooled to brute force encryption security.
About
mostly anything…
-
Archives
- January 2011 (1)
- September 2010 (1)
- March 2010 (1)
- February 2010 (2)
- September 2009 (4)
- August 2009 (1)
- July 2009 (2)
- June 2009 (1)
- April 2009 (2)
- January 2009 (1)
- September 2006 (1)
- August 2006 (1)
-
Categories
-
RSS
Entries RSS
Comments RSS
Odyssey 