Articles about duqu

The Register breaking news

Can YOU crack the Gauss uber-virus encryption?

Antivirus experts have called on cryptographers and other clever bods for help after admitting they are no closer to figuring out the main purpose of the newly discovered Gauss supervirus. While it's known that the complex malware features many information-stealing capabilities, with a specific focus on capturing website …
John Leyden, 14 Aug 2012
The Register breaking news

Schneier spanks AV industry over Flame failures

Security guru Bruce Schneier has questioned some of the excuses coming from the antivirus industry as to why it is taking them so long to pick up advanced malware like Flame and Stuxnet. Schneier's scolding was inspired by a mea culpa published in Wired by F-Secure's top security man, Mikko Hypponen. He admitted that when …
Iain Thomson, 19 Jun 2012
The Register breaking news

That MYSTERY Duqu Trojan language: Plain old C

An appeal for help from the programming community has allowed antivirus analysts to classify the unknown language used to develop key components of the Duqu Trojan. Duqu creates a backdoor on compromised SCADA-based industrial control systems. The malware is closely related to the nuke plant centrifuge-busting Stuxnet worm and …
John Leyden, 19 Mar 2012
The Register breaking news

Kaspersky claims ‘smoking code’ linking Stuxnet and Duqu

Researchers at Kaspersky Lab are claiming to have found proof that the writers of the Stuxnet and Duqu malware are one and the same, and are warning of at least three new families of advanced malware potentially in circulation. Security experts have been debating if the two code groups are by the same authors, but the evidence …
Iain Thomson, 30 Dec 2011
The Register breaking news

No BEAST fix from Microsoft in December patch batch

Microsoft released 13 security bulletins addressing 19 vulnerabilities overnight, as part of a bumper final Patch Tuesday of the year. Highlight of the baker's dozen is a patch for the the zero-day vulnerability exploited by Duqu (sibling of Stuxnet) worm back in October. Fixing the underlying flaw exploited by Duqu involves …
John Leyden, 14 Dec 2011
channel

Duqu vuln fix stars in bumper Patch Tuesday

Microsoft plans to deliver a festive hamper of 14 security updates next week, three of which are designed to tackle critical remote code execution flaws. The critical updates plug serious holes in Windows XP, Vista, and (to a lesser extent) Windows 7. On the server side, both Windows 2003 and Windows 2008 are vulnerable, but …
John Leyden, 9 Dec 2011
The Register breaking news

Duqu attackers: master coders, Linux rookies

The Duqu malware that targeted industrial manufacturers around the world may have been spawned by a well-funded team of competent coders, but their command of Linux led to some highly amateur mistakes. According to a report published on Wednesday by researchers from Kaspersky Lab, the unknown attackers attempted a global …
Dan Goodin, 1 Dec 2011
The Register breaking news

Iran wrestles Duqu malware infestation

Iran admitted on Sunday that unspecified computer systems in the country had been infected with the Duqu worm, a strain of malware similar to the infamous Stuxnet worm that sabotaged key nuclear plant systems in the country last year. The head of Iran's civil defence organization told the official IRNA news agency that the …
John Leyden, 14 Nov 2011
The Register breaking news

Duqu targeted each victim with unique files and servers

The creators of the Duqu malware that penetrated industrial manufacturers in at least eight countries tailored each attack with exploit files, control servers, and booby-trapped Microsoft Word documents that were different for each victim, according to research published on Friday. What's more, two of the drivers the …
Dan Goodin, 11 Nov 2011
The Register breaking news

Patch Tuesday leaves Duqu 0-day for another day

November marked a light Patch Tuesday with just four bulletins, only one of which tackles a critical flaw. All four advisories relate to problems in Windows. None is related to the zero-day vulnerability related to Duqu, the highly sophisticated worm reckoned to be related to the infamous Stuxnet pathogen. The flaw exploited …
John Leyden, 9 Nov 2011
The Register breaking news

Duqu spawned by 'well-funded team of competent coders'

The Duqu malware that targeted industrial manufacturers around the world contains so many advanced features that it could only have been developed by a team of highly skilled programmers who worked full time, security researchers say. The features include steganographic processes that encrypt stolen data and embed it into image …
Dan Goodin, 9 Nov 2011
The Register breaking news

Microsoft releases temporary fix for critical Windows bug

Microsoft has issued a temporary fix for a critical Windows vulnerability that has already been exploited to install highly sophisticated malware that targeted manufacturers of industrial systems. In an advisory issued late Thursday, Microsoft said the previously unknown flaw in the Win32k TrueType font-parsing engine affected …
Dan Goodin, 4 Nov 2011
The Register breaking news

Critical Windows zero-day bug exploited by Duqu

The Duqu malware used to steal sensitive data from manufacturers of industrial systems exploits at least one previously unknown vulnerability in the kernel of Microsoft Windows, Hungarian researchers said. The zero-day vulnerability was triggered by a booby-trapped Word document that was recently discovered by researchers from …
Dan Goodin, 1 Nov 2011

Create a news alert about duqu, or find more stories about duqu.

Biting the hand that feeds IT © 1998–2017