Malware experts are racing to find the authors of the Conficker C worm and limit the damage it seems poised to do beginning April Fool’s Day, CNN reports. Conficker C, the bug’s third iteration since late 2008, has infected between 5 and 10 million computers but so far has not taken action; a piece of the code indicates the worm will activate April 1.
It is unclear what the massive April Fool’s prank could be, but the goal of Conficker A was to trick users into buying fake antivirus software. The worm’s author has installed update capability to dodge the efforts of antivirus researchers: “We’re trying to reduce the impact of the April 1 date as best we can,” one analyst said. “But we know this malware will continue to evolve.”