Hey Readers! We’ve had a lot of calls today asking about the Conficker worm problem that is threatening to wreck havoc on 9 million-plus PC’s tomorrow (April 1, 2009). We understand the concern and are doing our best to protect ourselves — and we suggest you do the same.
In October, we sent out an e-mail blast alerting all of our contacts that Microsoft had released an urgent security update that was essential for any PC using any version of windows. This patch was designed to protect against the Conficker worm, specifically, as well as similar future attacks. The following directions come straight from Microsoft’s Technet. At this time, we strongly suggest you follow all of these precautions, knowing that we will be here to support you, should this worm prove to be as destructive as the media is presenting it to be. Protecting PCs from Conficker (Directly from Microsoft Technet)
- Apply the security update associated with MS08-067. (Click Here!)
- Make sure you are running up-to-date antivirus software from a trusted vendor, such as Microsoft’s Forefront Client Security or Windows Live OneCare. (All of our equipment at DE is protected by Symantec Endpoint Protection or AVG.) DO NOT Google search “antivirus” and download a free trial from anywhere today!
- Check for updated protections for security software or devices, such as antivirus, network-based intrusion detection systems, or host-based intrusion prevention systems. The Microsoft Active Protection Program (MAPP) provides partners with early access to Microsoft vulnerability information. For a list of partners and links to their active protections, please visit the MAPP Partners page.
- Isolate legacy systems using the methods outlined in the Microsoft Windows NT 4.0 and Windows 98 Threat Mitigation Guide.
- Implement strong passwords as outlined in this whitepaper.
- Disable the AutoPlay feature through the registry or using Group Policies. (See Knowledge Base Article 967715 for more information.)
NOTE: Windows 2000, Windows XP, and Windows Server 2003 customers must deploy the update associated with Microsoft Knowledge Base Article 967715 to be able to successfully disable the AutoRun feature. Windows Vista and Windows Server 2008 customers must deploy the security update associated with Microsoft Security Bulletin MS08-038 to be able to successfully disable the AutoRun feature.
*** Now, before you spend anymore time panicking over whether or not you’ll be affected by Conflicker, make sure you’ve done what you can to protect yourself. If you’re reading this and you’re on our Fixed IT plan, you don’t have to do any of this because your security updates are automatic! We’ve got you covered 😉
We will post new information just as soon as we get it! Stay calm and good luck! ttyl, storm!
