Security tool helps companies proactively protect their PCs and networks, as well as attached devices

April 1, 2009

3 Min Read

PRESS RELEASE

St. Paul, MN (March 30, 2009) -- Shavlik Technologies, LLC, the market leader in simplifying and automating security and compliance readiness, today responded to industry concern over the new variant of the Conficker virus that security researchers believe will be activated on April Fool's Day.

The Conficker worm is reported to have infected as many as 10 million PCs and its target is businesses that do not regularly update security patches to PCs and servers in the networks. All Conficker needs is to infect one machine to infect the entire network.

"The widely-cited report on the CBS program 60 Minutes last night was helpful in explaining what this virus is, but didn't go far enough to tell viewers that a proactive approach to protecting PCs in an enterprise network is the best defense against this virus," said Mark Shavlik, CEO of Shavlik Technologies.

Shavlik's Data Security Team says there are three ways the Conficker virus is spread:

  • The virus attacks a vulnerability in the Microsoft Server; if an organization's Server was not updated with the patch issued in October, infected PCs can be attacked remotely and taken over.

    • Conficker will also attempt a 'brute force' attack to guess passwords used by corporate networks, and then replicate through shared connections to the network.

    • Once infected, the virus turns off Windows Update services - thereby preventing the machine from obtaining the very patch that would have prevented the initial exploit.

    • The Conficker worm can easily infect Peer-to-peer or removable devices such as a Flash Drive or an iPod with an autorun file that executes once the infected device is connected to a PC. To combat possible infection of this virus, Shavlik is offering a free security tool to help companies proactively protect their PCs and networks, as well as attached devices, from this malicious virus. Go to http://www.shavlik.com/landingpage/20090326-conficker.aspx for a free download of the utility.

      Shavlik is already protecting millions of computers worldwide with Shavlik's NetChk Protect security suite from infection by this variant of the Conficker virus.

      "This is eerily reminiscent of the major worms of five years or more ago, Sasser/Blaster and before that Code Red, that had organizations scrambling to avoid infection. The advice today is the same as then " patch your systems first. This provides the breathing room to then update your firewall and AV technologies," said Chris Schwartzbauer, Senior Vice President, Sales and Marketing, of Shavlik Technologies. "What's also critical to understand is that IT organizations don't have time to waste with limited or integrated tools that don't provide the visibility, automation, and control required to manage proper, system wide updates. For companies that thought they were covered only to be hit with the virus, clearly the proper investment wasn't made on the front end."

      About Shavlik Technologies Shavlik Technologies, LLC delivers enterprise IT organizations robust software solutions that rapidly accelerate and continuously improve security and compliance readiness by simplifying IT operations, and identifying and reliably closing system security gaps.

      With more than 10,000 customers worldwide, Shavlik enables enterprises to simplify complex IT security and compliance management, providing trustworthy solutions that free up critical IT resources to focus on innovations that drive business growth while lowering costs. Shavlik also licenses its technology to more than 20 leading security and technology companies such as BMC, Juniper, Sophos, Symantec and VMware. For more information, visit Shavlik Technologies at www.shavlik.com.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe

You May Also Like

More Insights
Webinars
More Webinars
Events
More Events

Editor's Choice

MITRE Corp's logo in blue
Endpoint Security
MITRE ATT&CKED: InfoSec's Most Trusted Name Falls to Ivanti BugsMITRE ATT&CKED: InfoSec's Most Trusted Name Falls to Ivanti Bugs
byNate Nelson, Contributing Writer
Apr 22, 2024
3 Min Read
The letters EDR/XDR amid binary code
Application Security
Evil XDR: Researcher Turns Palo Alto Software Into Perfect MalwareEvil XDR: Researcher Turns Palo Alto Software Into Perfect Malware
byNate Nelson, Contributing Writer
Apr 19, 2024
4 Min Read
Kuala Lumpur, Malaysia, skyline against the harbor at sunrise
Cyber Risk
Licensed to Bill? Nations Mandate Certification & Licensure of Cybersecurity ProsLicensed to Bill? Nations Mandate Certification of Cybersecurity Pros
byRobert Lemos, Contributing Writer
Apr 23, 2024
4 Min Read
Reports
More Reports
White Papers
More Whitepapers
Events
More Events