TEHRAN (Reuters) – Iran said on Sunday it had detected the Duqu computer virus that experts say is based on Stuxnet, the so-called “cyber-weapon” discovered last year and believed to be aimed at sabotaging the Islamic Republic’s nuclear sites. The head of Iran’s civil defense organization told the official IRNA…
Iran says Duqu malware under ‘control’
Iran said on Sunday it had found a way to “control” the computer malware Duqu, which is similar to Stuxnet virus which in 2010 attacked its nuclear programme and infected more than 30,000 computers. View full post on computer worm – Yahoo! News Search Results View full post on National…
Duqu malware detected with open source toolkit
The lab credited with discovering the Duqu malware has built an open source toolkit that administrators can use to see whether their networks are infected. The Duqu Detector Toolkit v1.01 looks for suspicious files left by Duqu, which has created a buzz in the security community given its stealthy nature…
NSS Labs claims new tool can detect all Duqu drivers
NSS Labs has released an open source scanning tool that is capable of detecting all malicious drivers used by the new Duqu threat, according to the security research firm’s engineers. However, other security vendors believe that the malware’s creators are capable of evading detection at any time. According to NSS…
No Duqu zero-day patch yet, but Microsoft offers workaround
A full-blown Duqu zero-day patch won?t be ready for the November 2011 Patch Tuesday release, but experts say enterprises should be ready to deploy it quickly. <img alt="No Duqu zero-day patch yet, but Microsoft offers workaround, Blog, Microsoft, Offers, zeroday, patch, Duqu, workaround"height="0" width="0" border="0" style="display:none" src="http://segment-pixel.invitemedia.com/pixel?code=TechBiz &partnerID=167&key=segment”/> View full…
Duqu Mitigation, (Fri, Nov 4th)
There has been a lot of information published on Duqu over the past few days and it is likely exploiting a vulnerability in a Microsoft Windows component, the Win32k TrueType font parsing engine. Until a patch as been release to fix this vulnerability, the vulnerability cannot be exploited automatically via…
Microsoft announces workaround for the Duqu exploit
Microsoft have posted security advisory 2639658 to address the recently disclosed Windows kernel vulnerability (CVE-2011-3402) exploited by the Duqu malware. Microsoft has determined the flaw is in the processing of embedded True Type Fonts (TTFs). According to Microsoft: “The attacker could then install programs; view, change, or delete data; or…
Duqu hackers shift to Belgium after India raid (Reuters)
Reuters – Hackers used a server in Belgium to collect data stolen from machines infected with the Duqu computer virus, after authorities shut down another rogue collection system in India, according to security experts. View full post on Yahoo! News: Security News View full post on National Cyber Security Gergory…
New Duqu malware shares Stuxnet Trojan code similarities
Symantec Corp. researchers have revealed the presence of new malware that is strikingly similar to the dangerous Stuxnet Trojan, and could be a precursor to a future Stuxnet-style attack. Symantec Security Response researchers say Duqu (pronounced dyü-kyü), named because it creates files with the file name prefix “~DQ”, was first…
Duqu worm looms as ‘next big cyber threat’
The Duqu computer worm wiggled into the spotlight late last month. Here’s what you can do to make sure Duqu doesn’t infect your machine. View full post on computer worm – Yahoo! News Search Results View full post on National Cyber Security » Virus/Malware/Worms Gregory Evans | LinkedIn Interview With…