REDMOND, Wash. — Feb. 12, 2009 — Today, Microsoft Corp. announced a
partnership with technology industry leaders and academia to implement
a coordinated, global response to the Conficker (aka Downadup) worm.
Together with security researchers, Internet Corporation for Assigned
Names and Numbers (ICANN) and operators within the Domain Name System,
Microsoft coordinated a response designed to disable domains targeted
by Conficker. Microsoft also announced a $250,000 reward for
information that results in the arrest and conviction of those
responsible for illegally launching the Conficker malicious code on
the Internet.
"As part of Microsoft's ongoing security efforts, we constantly look
for ways to use a diverse set of tools and develop methodologies to
protect our customers," said George Stathakopoulos, general manager of
the Trustworthy Computing Group at Microsoft. "By combining our
expertise with that of the broader community we can expand the
boundaries of defense to better protect people worldwide."
As cyberthreats have rapidly evolved, a greater level of industry
coordination and new tactics for communication and threat mitigation
are required. To optimize the multiple initiatives being employed
across the security industry and within academia, Microsoft helped
unify these broad efforts to implement a community-based defense to
disrupt the spread of Conficker.
Along with Microsoft, organizations involved in this collaborative
effort include ICANN, NeuStar, VeriSign, CNNIC, Afilias, Public
Internet Registry, Global Domains International Inc., M1D Global, AOL,
Symantec, F-Secure, ISC, researchers from Georgia Tech, the
Shadowserver Foundation, Arbor Networks and Support Intelligence.
"The best way to defeat potential botnets like Conficker/Downadup is
by the security and Domain Name System communities working together,"
said Greg Rattray, chief Internet security advisor at ICANN. "ICANN
represents a community that's all about coordinating those kinds of
efforts to keep the Internet globally secure and stable."
"Microsoft's approach combines technology innovation and effective
cross-sector partnerships to help protect people from cybercriminals,"
Stathakopoulos said. "We hope these efforts help to contain the threat
posed by Conficker, as well as hold those who illegally launch malware
accountable."
More information about how to protect yourself from Conficker can be
found at http://www.microsoft.com/conficker. Customers interested in
learning more about staying safe online can visit
http://www.microsoft.com/protect.
Microsoft's reward offer stems from the company's recognition that the
Conficker worm is a criminal attack. Microsoft wants to help the
authorities catch the criminals responsible for it. Residents of any
country are eligible for the reward, according to the laws of that
country, because Internet viruses affect the Internet community
worldwide. Individuals with information about the Conficker worm
should contact their international law enforcement agencies.
Founded in 1975, Microsoft (Nasdaq "MSFT") is the worldwide leader in
software, services and solutions that help people and businesses
realize their full potential.
Note to editors: If you are interested in viewing additional
information on Microsoft, please visit the Microsoft Web page at
http://www.microsoft.com/presspass on Microsoft's corporate
information pages. Web links, telephone numbers and titles were
correct at time of publication, but may since have changed. For
additional assistance, journalists and analysts may contact
Microsoft's Rapid Response Team or other appropriate contacts listed
at http://www.microsoft.com/presspass/contactpr.mspx.
