Security professionals have finally solved the mystery of Duqu's programming language, and has confirmed its long term thought, and fear. The virus appears to have been created by pros. Analyzing the code, which now seems to have been built using a
customized object-oriented version of the programming language
C, Igor Soumenkov from Kaspersky Lab
concluded that Duqu is the work of "a rather professional team of
developers," and drastically different than the routine malware
researchers see on a daily basis. The sophisticated techniques used in creating Duqu "are normally seen in professional software and almost never in today's
malware," Soumenkov said. It's a strong indication that Duqu, "just like
Stuxnet, is a 'one of a kind' piece of malware which stands out like a
gem from the large mass of 'dumb' malicious programs we normally see."
If you do now know what Duqu is, it was a serious virus based off of the infamous Stuxnet worm that was targeted at energy facilities located in Iran and Europe. Duqu spreads through phishing emails that have an attached word document, which has an embedded trojan dropper, also known as a trojan downloader.
It is recommended that you always run the most up to date anti-virus. I personally prefer Microsoft Security Essentials. It is free, and is backed by Microsoft. Its ease use and great price point makes it a no brainer for those who want a easy, simple antivirus, and that its free.
Here was some info about Microsoft Security Essentials by me. I posted this all the way back in December, probably the day this blog was founded.
No comments:
Post a Comment
Note: This is Blogger's comment system. This system is a backup for when Disqus can't be reached by your computer, such as when your network blocks connections to disqus.com. The comment policy still applies regardless.