Conficker Summary

Summary and Review
jd@workathomebusinesssecrets.ws
 

ICANN releases "Lessons Learned" report regarding Conficker, cites Global Domains participation

Excerpted directly from ICANN's Conficker Summary and Review

"This report provides a chronology of events related to the containment of the Conficker worm. It provides an introduction and brief description of the worm and its evolution, but its primary focus is to piece together the post- discovery and -analysis events, describe the containment measures chronologically, and describe the collaborative effort to contain the spread of the worm. The author captures lessons learned during a containment period spanning nearly a year and describes recent activities that attempt to apply the lessons learned so that the security and DNS communities can be better prepared for future attacks that exploit the global DNS."

....

"On 12 February, Microsoft published a press release announcing partnership with technology industry leaders and academia to implement a coordinated, global response to the Conficker (a.k.a. Downadup) worm and offering a $250,000 reward for information leading to the arrest and conviction of Conficker's writers. The announcement acknowledged the participation and cooperation of ICANN, registry operators (NeuStar, VeriSign, CNNIC, Afilias, Public Internet Registry) as well as Global Domains International Inc., M1D Global, AOL, Symantec, F-Secure, ISC, researchers from Georgia Institute of Technology, the Shadowserver Foundation, Arbor Networks and Support Intelligence. At this point, Arbor Networks joined to complement sinkhole operations. Following this announcement, the press began referring to the ad hoc partnership as the Conficker Cabal. The partnership later preferred and continues to use the name Conficker Working Group."

To read the full report, go to ICANN's Conficker Summary and Review.