Tuesday, March 20, 2012

Duqu virus cracked finally cracked, work of pros

Security professionals have finally solved the mystery of Duqu's programming language, and has confirmed its long term thought, and fear. The virus appears to have been created by pros. Analyzing the code, which now seems to have been built using a customized object-oriented version of the  programming language C, Igor Soumenkov from Kaspersky Lab concluded that Duqu is the work of "a rather professional team of developers," and drastically different than the routine malware researchers see on a daily basis. The sophisticated techniques used in creating Duqu "are normally seen in professional software and almost never in today's malware," Soumenkov said. It's a strong indication that Duqu, "just like Stuxnet, is a 'one of a kind' piece of malware which stands out like a gem from the large mass of 'dumb' malicious programs we normally see."

If you do now know what Duqu is, it was a serious virus based off of the infamous Stuxnet worm that was targeted at energy facilities located in Iran and Europe. Duqu spreads through phishing emails that have an attached word document, which has an embedded trojan dropper, also known as a trojan downloader.

It is recommended that you always run the most up to date anti-virus. I personally prefer Microsoft Security Essentials. It is free, and is backed by Microsoft. Its ease use and great price point makes it a no brainer for those who want a easy, simple antivirus, and that its free.

Here was some info about Microsoft Security Essentials by me. I posted this all the way back in December, probably the day this blog was founded.

No comments:

Post a Comment

Note: This is Blogger's comment system. This system is a backup for when Disqus can't be reached by your computer, such as when your network blocks connections to disqus.com. The comment policy still applies regardless.