funsec mailing list archives

Re: thoughts

From: der Mouse <mouse () rodents-montreal org>
Date: Tue, 31 Mar 2009 14:52:32 -0400 (EDT)

We are accustomed to see malware bent on financial gain, but what is
the motivation for Conficker?  The investment was made, the ammassed
"firepower" is large, and no gain has yet been obtained.  Could the
owners of Conficker be outside of the usual criminal circles?  Could
it be a military project, waiting for a political event, to activate?


Could?  Certainly.

My own suspicion?  It's a relatively ordinary botnet-in-prepraration,
just run by someone who's willing to let it lie fallow for a few months
in order to get better penetration before spinning it up.

(My own opinion of the "Conficker pwns Parliament" thing is rather well
summed up by xkcd #463.  But then, that's how I feel about most malware
incidents.)

/~\ The ASCII                             Mouse
\ / Ribbon Campaign
 X  Against HTML                mouse () rodents-montreal org
/ \ Email!           7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

thoughts RandallM (Mar 31)
- Re: thoughts Gadi Evron (Mar 31)
  - Re: thoughts Dave Nelson (Mar 31)
  - Re: thoughts RandallM (Mar 31)
  - Re: thoughts David Harley (Mar 31)
    - Re: thoughts RandallM (Mar 31)
  - Re: thoughts Remo Cornali (Mar 31)
    - Re: thoughts der Mouse (Mar 31)
    - Re: thoughts phester (Mar 31)
    - Re: thoughts Steve Pirk (Mar 31)
- Re: thoughts David M Chess (Mar 31)
- Re: thoughts Martin Tomasek (Mar 31)
- Re: thoughts Alex Lanstein (Mar 31)
  - Re: thoughts Valdis . Kletnieks (Mar 31)