Does your PC have worms?

Our wholesale bandwidth provider, CenturyLink, has informed us that one or more of our subscribers is running a Windows PC infected with the Conficker (also called Downadup) worm, which is making attempts to spread from our network into their equipment. CenturyLink has asked us to provide our subscribers with the following notification:

CenturyLink recommends that you patch all Windows operating systems, as described in Microsoft Security Bulletin MS08-067. In the event that you are unable to update your antivirus program to remove the worm, you may need to seek assistance from a computer professional to effectively remove the worm and update your antivirus protection. Please note that you may need to reinstall updated antivirus software after the worm is removed to restore protection.

If you’re running a PC, please take the time to download and run the Microsoft Malicious Software Removal Tool, and follow up by downloading and installing all outstanding upgrades to whatever antivirus package you use. Old versions of Windows (notably XP or older) are particularly vulnerable to this infection.

Conficker does not infect MacOS, Linux, smartphones, tablets, or smart devices.

Thank you for your cooperation.

Nasty KRACK

This week’s networking crisis is that black-hats have found another way to violate your privacy. Called the KRACK exploit, it allows hackers to spoof WiFi protocol so as to break its encryption and read your traffic.

It’s worth pointing out that this is not just a zero-day bug in some manufacturer’s implementation—it’s a defect in the WiFi standard itself, and all WiFi (802.11) encryption is vulnerable to it. It does require a hacker to be close enough to have physical access to your radio signal.

We wanted to let you know what we were doing about it, and also what you should be doing about it yourself. Continue reading