What Conficker Tells Us

The latest statistics I’ve read from vendors now say that up to 6% of PCs worldwide are infected by the worm. What is going to happen as a result of this worm is still yet to be determined. The “patch” provided by Microsoft disables autorun so that the worm cannot infect the machine, but that is for only one variant of the worm. Another patch addresses the underlying vulnerability in the server service.

Windows patch MS08-067. What’s wrong with this picture?

The patch was released in October of 2008. The French Navy, British Parliament and the Armed Forces of Germany have all reported outbreaks.

It’s been almost six months since the first patch release from Microsoft. Why isn’t everybody patched?
The fact that so many computers have been infected tells us that patch management and deployment as it is now is not working.

Companies frequently refuse to patch because they “don’t want to break something.” SQL SLammer brought networks down worldwide – what will Conficker do to your network if you aren’t up to date on patches?