Has Conficker Been Abandoned By Its Authors?

darthcamaro writes "Remember Conficker? April first doom and gloom and all? Well apparently after infecting over five million IP addresses, it's now an autonomous botnet working on its own without any master command and control. Speaking at the Black Hat/Defcon Hat security conference in Las Vegas, Mikko Hypponen, chief research officer at security firm F-Secure, was told not to talk in detail about the Conficker gang — the problem is that not all researchers were under the same gag order. Just ask Roel Schouwenberg, senior anti-virus researcher at security firm Kaspersky, who says 'The Conficker botnet is autonomous; that is very strange in itself that they made Conficker replicate by itself. Now it seems like the authors have abandoned the project, but because it is autonomous, it can do whatever it wants and it keeps on trying to find new hosts to infect.'"

Re:What?

[rascanban]

Strength is irrelevant. Resistance is futile. We wish to improve ourselves. We will add your biological and technological distinctiveness to our own. Your culture will adapt to service ours.

Broken Torgo Routine

[eldavojohn]

Well apparently after infecting over five million IP addresses, it's now an autonomous botnet working on its own without any master ...

Hmmm, sounds like its authors should have spent more time on their Torgo routine [wikia.com]. You know, the bit of code that takes care while the master is away.

<Torgo>The master would not approve; he likes you ... but the master would ... not approve.</Torgo>

so where are they now?

[gbjbaanb]

Possible scenarios:

1. they've been busted for something else and are now in gaol. Conficker patiently bides its time waiting for the stars to be right and its dark master(s) to be freed.

2. they've given up on that crappy little botnet and are working busily on a new, much stronger, more powerful one.

3. It was never invented by Russian mobsters, but by the Bush administration, intending to hack all the voting machines and deliver unto George a third term.

4. someone forgot their password, it was written on a little post-it by the monitor, which was vacuumed up by their mum when she did some spring cleaning.

5. The inventors had their fun with Microsoft and the internet, but now they've discovered girls and beer.

Locked out?

[dickens]

I wonder if they just managed to lock themselves out, so they can't control it.

Either that or someone walked in front of a beer truck.

Whaticker?

[CarpetShark]

Remember Conficker? April first doom and gloom and all?

Not really. I use Linux. What was it you were worried about again?

Gee, I knew it

[Lars T.]

That's what happens when software isn't open - it gets abandoned and the users are screwed. Free Conficker now! Turn it over to the EFF!

Re:Whaticker?

[MyLongNickName]

Never getting laid?

Re:What?

[maxwell demon]

Not as impossible and funny as it might appear. Imagine a HD crash and no backup of the keys to issue new commands. :)

I didn't know that a HD crash can also take out the keyboard. Also I didn't know that you are supposed to make backups of your keys. I always thought just buying a new keyboard would work. :-)

[Note: Yes, I did understand that cryptographic keys were meant. I just couldn't resist the opportunity of the joke.]

Re:What?

[Anonymous Coward]

Next time, please do us all a favor, and resist.

Re:Whaticker?

[basementman]

Wow, looks like you're the first one to get their wireless driver working.

Re:I for one welcome our new virii overlords

[gurps_npc]

I for one would far prefer an overload that needs Viagra over one that is virile. Cut's down on the pain, significantly.

Re:What?

[JustOK]

Next time, please do us all a favor, and resist.

but wouldn't that be futile?

Re:This is not Skynet

[scorp1us]

Just wait until it finds out about git and starts maintaining the tty subsystem, writing itself into linux...

Abandoned or just dormant?

[Pincus]

1. Create autonomous botnet
2. Nap
3. ???
4. Profit

Re:Translated:

[d3m0nCr4t]

Nah, it works to good to be written by Symantec... ;)

Re:This is not Skynet

[John Hasler]

We don't discriminate. If it writes decent code its contributions will be welcome.

Please...

[Keyper7]

...it followed me home, can I keep it? [xkcd.com]

Re:so where are they now?

[Narnie]

9. Little David Lightman realized his HelloWorld script was a bit out of control and turned off his computer. Should have stayed with WarGames. [imdb.com]

Endgame: Singularity

[Runaway1956]

The real news is that Conficker has evolved, intellectually, beyond the intellect of it's creators. Singularity/Cornfucker has arrived, disguised as a botnet!

Oh great!!!

[Theodore]

That's all we need...
An abandoned, horny bot-net with extreme daddy-issues.
That ALWAYS ends well.

Re:What?

[Seumas]

Maybe Alan Cox can step in as maintainer, now that he has a little free time off his TTY maintainer position?

Re:Authors...

[Eponymous Crowbar]

Actually, the article was submitted by the Conficker bot. It has evolved a rudimentary PR function...

Re:Whaticker?

[Anonymous Coward]

So why are you worried about never getting laid? Did the guy using linux steal your girlfriend?

Re:Always possible they lost control of it instead

[DMUTPeregrine]

A statistical blimp, eh? Sailing serenely over the countryside, counting and comparing, picking out trends among the populace below...

Re:Gee, I knew it

[Tenebrousedge]

"Really, I'm not out to destroy Microsoft. Ha! Just kidding." -- Linus Torvalds, original author of Conficker

"Conficker. An elegant weapon, for a more civilized age." -- RMS [xkcd.com]

"...I've had enough. If you think that problem is easy to fix you fix it. Have fun." -- author unknown, found on the Conficker Developer's Mailing List

Re:Translated:

[drinkypoo]

Nah, it works to good to be written by Symantec... ;)

I was thinking that the surest sign it is not from Symantec is that it is too easy to remove.

Re:Whaticker?

[Nethemas the Great]

If you want to use Linux, use Ubuntu. If you want to learn Linux use Gentoo. If you have A.D.D. use Slackware.

Re:so where are they now?

[the_one(2)]

Cracking the key would not be easy... How ironic that he should lose access to his botnet when he needs it the most.