According to a leaked memo, courtesy of Dizzy Thinks, the UK Parliamentary network is now the latest addition to the growing Conficker botnet. This shocking lack of security -- the only explanation for the infection -- emerged during a media blitz surrounding the latest Conficker variant and panic over the April 01 activation of new command code.
Conficker nails Parliament – slowing network and locking accounts. (IMG:moviewallpapers)
The leaked memo, issued by the Director of Parliamentary ICT, said that the Conficker outbreak is affecting users by “slowing down the network and by locking out accounts.”
“The Parliamentary Network has been affected by a virus known as Conficker. This virus affects users by slowing down the Network and by locking out some accounts. We are continuing [sic] to work with our third party partners to manage its removal and we need to act swiftly to clean computers that are infected,” the memo reads.
“We are scanning the Network and if we identify any equipment which we believe is infected with the virus then we will contact you to ensure that the device is either removed from the Network or cleaned and loaded with the correct software to prevent this infection reoccurring.”
The memo adds that users can help contain the problem by removing PCs and portable devices not authorized for use on the Parliamentary network, begging the question as to why they were allowed there in the first place?
Another suggestion says: “An additional characteristic of this virus is that for some types of files it can skip direct to the Network from a USB memory stick or other portable storage device (e.g. mp3 players) without hitting the virus checker software. We ask that for the time being you do not use memory sticks or any other portable storage devices on the Parliamentary Network.”
So there is something clearly missing, namely the apparent lack of network control and device management. Why are PCs and other devices allowed to connect to Parliament’s network? Why are the systems running without controls for USB and other media? It isn’t like Conficker’s methods are unknown or the mitigation tools are lacking.
One comment on Dizzy Thinks made a good point for those reporting on this memo and lambasting the government:
“Please don't confuse Parliament and Government -- it's bad enough that the Government forgets there's a difference, without the public becoming the same.”
However, they work with government on some issues, and the information on their network is just as valuable and, in some cases, just as sensitive. Where are the controls and the proper network defenses?
According to an update by The Register, an insider confirmed the memo was legitimate and added that the banning of mobile devices on the network would be an inconvenience to some of the Members of Parliament (MPs).
The Tech Herald has covered Conficker's spread from the beginning. The articles below offer more information.
Want regular updates from The Tech Herald? Follow us on Twitter.
Conficker: The Tech Herald’s index of news and information
Interested in a more interactive TTH? Join our Facebook Group Want regular updates from The Tech Herald? Follow us on Twitter
Advertising
Comment on this Story