What is it?

The Downadup worm (a.k.a. ‘Conficker’ or ‘Net-worm.Win32.Kido’) exploits the MS08-067 vulnerability in the Windows Server Service.

Currently the worm does not harm infected computers, but it has the capacity to cause considerable damage at a later time. Once infected, the affected computer generates hundreds of random web addresses and attempts to contact them daily in order download an executable or the ‘marching order’.

Although Conficker is set to run on April 1st, it may not if the person controlling it decides not to issue the ‘marching orders’.

The ‘marching order’ is sent when the hacker registers one of the many random website (domain) that the Conficker checks for daily, and insert a malicious exe/code to be downloaded by the worm.

Click here to read the Last minute fix by Yahoo Tech Blog