TR Forums

I thought Windows 7 was re-written from scratch. If it had been, it wouldn't suffer from the same vulnerability in Windows XP that allows Duqu infestation. So much for Microsoft and their lofty claims. Now I am seriously concerned. Kaspersky seems to be the only one claiming Duqu detection. Why are things going so slow??? This rootkit was reported on 1st September, 2011 according to Wikipedia. And Microsoft has still to post a proper patch. I mean, WHAT THE HELL???

And please don't post any references to the Duqu removal tools out there. I'm sure sifting through gigabytes of files looking for Duqu on hundreds of computers in a corporate environment might be fancied by some admins but I am certainly not one of them.

Igor_Kavinski wrote:

I thought Windows 7 was re-written from scratch.

Not sure where you got that idea from. 7 is wholly derivative of Vista. Vista had parts re-written from scratch, but even it carries over some old code.

Now I am seriously concerned. Kaspersky seems to be the only one claiming Duqu detection. Why are things going so slow??? This rootkit was reported on 1st September, 2011 according to Wikipedia. And Microsoft has still to post a proper patch. I mean, WHAT THE HELL???

QA and regression testing take time.

Pllase don't post any references to the Duqu removal tools out there. I'm sure sifting through gigabytes of files looking for Duqu on hundreds of computers in a corporate environment might be fancied by some admins but I am certainly not one of them.

If you're that concerned about it then you should implement the official quick fix for the problem.

One also needs to put things into perspective. Day zero exploits represent less than 0.1 percent of the malware detected across six hundred million PCs per month according to the most recent bi-annual report.

Frankly given the vectors of vast success used in the past against business (such as the compromises of the RSA tokens) you should be more worried about making sure your Flash is updated.

3rd party software exploits are more popular than attacking the OS in these modern times.

Igor_Kavinski wrote:

I thought Windows 7 was re-written from scratch.

I don't recall MS ever claiming that. Either you imagined it, or you read something that was written by someone who did.

Ryu Connor wrote:

3rd party software exploits are more popular than attacking the OS in these modern times.

And social engineering attacks are becoming the infection vector of choice. User education is at least as important as keeping the OS and other software patched.

Patched.

http://arstechnica.com/business/news/20 ... -patch.ars

Symantec researchers examined two variants of Duqu. Once on a machine, the strains download a remote access tool, which allows the malware to take control of the computer and begin communication with a command-and-control hub. In the case of one of the variants studied, it installed an "Infostealer" trojan, designed to record keystrokes and map networks.