Stuxnet Worm Targets Four Microsoft Zero-Day Bugs

Kara Reeder

According to eWEEK, security researchers say that the Stuxnet worm has been targeting four zero-day vulnerabilities in Windows in an effort to infect industrial control systems.

 

In July, a security researcher published a working exploit of a critical Windows vulnerability that was initially being used to spread the Stuxnet worm via USB drives. Microsoft released an out-of-band patch to address the vulnerability.

 

However, the malware has been exploiting multiple zero-day bugs. As CNET News notes, Microsoft's September Patch Tuesday patched a secondary propagation method used by the worm, a bug in the Print Spooler Service. Still, two elevation-of-privilege vulnerabilities remain unpatched.



Add Comment      Leave a comment on this blog post

Post a comment

 

 

 

 


(Maximum characters: 1200). You have 1200 characters left.

 

 

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.


 

Resource centers

Business Intelligence

Business performance information for strategic and operational decision-making

SOA

SOA uses interoperable services grouped around business processes to ease data integration

Data Warehousing

Data warehousing helps companies make sense of their operational data