by Matthew Shaer, Christian Science Monitor
According to a new report, Duqu, a computer worm first detected late last month, may be using a hole in the Windows operating system to spread from machine to machine. Over at Symantec, Vikram Thakur identifies the Duqu installer file as a simple Word document, which, once downloaded, allows the Duqu worm to wiggle its way deep into your hard drive. “The installer file is a Microsoft Word document (.doc) that exploits a previously unknown kernel vulnerability that allows code execution,” Thakur wrote yesterday on the Symantec site. “We contacted Microsoft regarding the vulnerability and they’re working diligently towards issuing a patch and advisory. When the file is opened, malicious code executes and installs the main Duqu binaries.”
http://www.csmonitor.com/Innovation/Horizons/2011/1103/Duqu-worm-looms-as-next-big-cyber-threat
Share on Facebook