April 9, 2009 | Bratislava

Conficker stopped connecting to domains

ESET detected a new variant of Conficker worm that is different to the previous ones in one major, yet surprising feature. It doesn’t contact any of the control domains, even though it originally operated with up to 50 000 domains a day.

April 6, 2009 | Bratislava

ESET released Public Beta of the new ESET Plug-in for Cisco NAC

Users with with Cisco devices implemented in their company networks have the opportunity to test it. Testers can provide feedback or questions about the beta version of ESET Plugin for Cisco NAC directly to

April 6, 2009 | Bratislava

Conficker Topmost Threat throughout March 2009

According to the data captured by ThreatSense.Net,® the worm Conficker has been spreading on a massive scale primarily in the region of Eastern Europe, with especially high occurence in Ukraine (27,52%), Russia (22,48%), Romania (12,11%), Bulgaria (10,17%), apperaing also in Spain (11,81%), Italy (7,79%).

April 2, 2009 | Bratislava, April 2nd, 2009

The new ESET Online Scanner is now available in the Release Candidate verison

As of today, the new ESET Online Scanner is in the "release candidate" phase, marking the beginning of intensive public testing prior to market launch.

April 1, 2009 | San Diego, CA

For the Hypochondriacs…

I’ve tried to convince you all that you really need to watch out for all of the threats and that it really isn’t worth worrying about Conficker, but if you are still worried about Conficker we do have a knowledge base article you can peruse at you apply your security patches, disable autorun, and exercise a bit of caution about what programs you download and open you will avoid the much more harmful threats as well as Conficker.

April 1, 2009 | Bratislava

April 1st and Conficker: Nothing Happened?

The analysts at ESET have carefully watched the commencement of activity of the worm Win32/Conficker.X. The worm has in its body an embedded command to trigger its activity on April 1st. This command has thus been activated, prompting the worm to start communication with a randomly-generated number of domains out of the estimated daily total of 50, 000 where the worm checks for instructions.

March 30, 2009 | San Diego, CA

Catching Conficker - a New Development

I can already hear a chorus of "Not ANOTHER Conficker blog?", but some of you will want to know about this development. The Honeynet Project has announced a new scanning tool for detecting Conficker, which gives network and system administrators a very handy extra tool for detecting Conficker activity on their networks. Furthermore, the tool is currently being integrated into mainstream vulnerability scanners like nmap, nessus, and products from ncircle, Qualys and Foundstone. It detects all current variants of Conficker by flagging changes they make to NetpwPathCanonicalize().

March 30, 2009 | Bratislava

Record-breaking VB100% Awarded along with Highest AV-Comparatives Accolade

Thus far, the year 2009 has proved to be successful for ESET. The company has secured the highest possible accolades in two of the most prestigious Antivirus tests - the British-based Virus Bulletin and Austrian-based AV-Comparatives.

March 28, 2009 | San Diego, CA

Conficker Removal (Update)

[Update: it seems that people who missed the whole MS-DOS/having fun with the C> prompt and batchfiles thing are still struggling with the fact that vendors are releasing cleaning tools that are really command-line tools, so some step-by-step notes are added below.]I'm sure you're almost as bored with this issue as I am with the BBC. (I wonder if it's contemplating buying the Conficker botnet to add to its collection?)However, it seems that some people are still confused as to how to remove Conficker if it's already on their system. So here's a quick summary: some of it it was actually posted by our labs back in January, but it still applies.

March 23, 2009 | Bratislava

A new variant of Conficker Worm Ready for Massive Attack on PC Infrastructure

The new variant of the dangerous worm Conficker is rapidly spreading through the Internet. The malware‘s variants, which appeared previously have succeeded in shutting down thousands of PCs worldwide. Computer security experts agree that Win32/Conficker.X, (also dubbed by some vendors as Conficker.C or Conficker.D) poses even a greater threat than its predecessors.

| 1 | 2 | 3 | 4 | 5 | 6 | 7 |