SC Magazine: Breaking down Duqu: The not-so-lost son of Stuxnet

/Home/Internet Security: Articles/Internet Security: SC Magazine/SC Magazine: 2012

Andrew Browne, malware labs team leader, Lavasoft
January 13, 2012

As you've likely heard, an apparently modified version of the well-publicized Stuxnet worm, Duqu, was recently discovered on a number of corporate computer systems in Europe.

Analysis by Budapest University of Technology and Economics in Hungary describes that the malware -- named after temporary files with names starting with “~DQ” created by its keylogger -- appears to be based on the dangerous Stuxnet source code, giving rise to the possibility that Duqu may have been developed either by the Stuxnet authors or by developers who had access to the source code.

Not so fast.

Click the URL above to read the full article