USCERT saw no evidence of nefarious behavior associated with Conficker on April 1, 2009. It is important to understand that it is still unclear what Conficker is intended for and capable of doing. Systems with infections must be cleaned now. An infected system could enable an attacker to remotely take control of that system and install additional malicious software. Even though April 1, 2009 has passed, the exact time and intended purpose of the ConfickerDownadup worm remains unknown. The possible malicious uses of this worm range from data theft, phishingspam efforts, and, the scenario of most concern, distributed denialofservice DDoS attacks. Users must remain vigilant in detecting the Conficker Worm and systematically cleaning systems of these infections to prevent potential, future cyber events. PLEASE READ THE CURRENT ACTIVITY UPDATE for more information about the Conficker worm.

Address: Department of Homeland Security , (Attn: NPPD/CS&C/NCSD/US-CERT) 245 Murray Lane SW Bldg 410 Washington, DC 20598
Telephone: 1-888-282-0870
Website: http://www.us-cert.gov/