Anyone else worried about the Duqu worm?

rcook12

I’ve seen tons of articles pop up in my news feeds today about the Duqu worm, and the latest news tells me that there is still no patch to close the vulnerability in Window.  My level of concern is growing. How much risk is there that this worm will cause widespread harm? Are businesses here in the U.S. of A. at risk?

Topic: Security
Answer this Question

Answers

2 total
jdixon
Vote Up (20)

 

From what I have read from Forbes, it seems that the Duqu worm is possibly the result of some government's intelligence agency at work, and seems to be used in targeted attacks.  Now that it is out there, who knows how far it will spread.    It seems that it uses a .doc file to install itself on your hard drive, so I certainly won't be opening any Word files that appear unexpectedly in my inbox.  Hopefully the patch that Microsoft is working on will be released shortly.  

 

Symantec published a white paper on Duqu that you might find interesting:  http://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/w32_duqu_the_precursor_to_the_next_stuxnet.pdf 

 

jimlynch
Vote Up (20)

No, not at all for my personal computing. I run Linux and Mac OS X. As far as I know neither of them is vulnerable to the Duqu worm at this point. It seems to be a Windows only virus.

That said, it certainly has the potential to cause significant problems so I hope the authorities can get a handle on it fast.

For those who aren't familiar with it, here's some background information:

http://www.dailytech.com/Nasty+Duqu+Worm+Exploits+Same+Microsoft+Office+...

"The "Duqu" worm is currently sweeping corporate networks worldwide, seeking to infect as many machines as possible in what appears to be an effort to target power plants, oil refineries and pipelines.

Microsoft Corp. (MSFT) revealed this week that Duqu uses similar code to the Stuxnet worm, which crippled Iranian nuclear power computer systems in 2010. Many have voiced suspicions that U.S. defense or intelligence agencies were behind Stuxnet, but it appears extreme unlikely that the U.S. government had anything to do with Duqu. In fact, Duqu appears to be targeting U.S. allies."

Ask a question

Join Now or Sign In to ask a question.
Almost 500,000 patient records have been hacked from the servers of the Harley Medical Group, the plastic surgery firm which has clinics across the UK.
Security researchers have found that many satellite communication systems have vulnerabilities and design flaws that can let remote attackers intercept, manipulate, block and in some cases take full control of critical communications.
The U.S. commercial drone industry is still struggling to get off the ground more than two years after President Obama signed into law a bill that permits the civilian use of unmanned aerial vehicles (UAV) over the country's airspace.
Sure, you’ve changed a bunch of passwords, but are you doing all you can to protect yourself?
About 2.6 million payment cards at Michaels Stores and another 400,000 at subsidiary Aaron Brothers may have been affected in a card skimming attack that compromised its point-of-sale systems, the retailer said Thursday.
National security may be at stake as private businesses try to manage a growing number of cyberthreats, but IT professionals shouldn't have to bear that burden alone.
Worried about how the Heartbleed vulnerability may affect your personal accounts? A new tool may be of help.
Whether it's the first time you've picked up an iPad or the seventeenth time you've pulled out your iPhone today, there are probably still some iOS 7 features and functionality that you're not familiar with. Don't sweat it: We're here to help. We've collected some of our favorite and most useful tips and compiled them here, just for you.
The Tor Project has flagged 380 Tor relays vulnerable to the critical Heartbleed flaw to be rejected from the Tor anonymity network, reducing the network's entry and exit capacity.
Cybercriminals have started using a sophisticated Android Trojan app designed for e-banking fraud to target Facebook users, possibly in an attempt to bypass the two-factor authentication protection on the social network.

White Papers & Webcasts

See more White Papers | Webcasts

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+