Win32/Conficker.B/Downadup exploits a vulnerability in the Windows Server service (SVCHOST.EXE) for Windows 2000, Windows XP, Windows Vista, Windows Server 2003, and Windows 2008. While Microsoft addressed this issue in October with Microsoft Security Bulletin MS08-067, and Forefront antivirus and OneCare (as well as other vendor’s anit-virus products) helped protect against infections, many systems that have not been patched manually through Server Update Services and Microsoft/Windows Update or through Automatic Updates have recently come under attack by this worm. Attacked systems may lock out users, disable our update services and block access to security-related Web sites.

atsec information security today published the “IT security standard planetarium”, which depicts the relationships among many IT security standards.

The beta version of Windows 7, Microsoft’s next-generation PC operating system, can be downloaded today by MSDN, TechBeta and TechNet customers. Consumers who want to test-drive the beta will be able to download it beginning Jan. 9.