The Envoy

Meet Duqu, suspected precursor to next-gen Stuxnet cyber attack

The Envoy

October 19, 2011 at 1:38 PM

Computer security firm Symantec this week identified a one-year old computer malware program called "Duqu" that it believes to have been written by the same authors of the Stuxnet virus that reportedly infected the computer systems controlling Iran's nuclear enrichment program. But the purpose of the Duqu malware is different from that of Stuxnet, Symantec's analysis suggests: it is to "gather intelligence data .... in order to more easily conduct a future attack against another third party."

"We were just utterly shocked when we found this," Stuxnet expert Liam O Murchu told Wired's Kim Zetter.

"On October 14, 2011, a research lab with strong international connections alerted us to a sample that appeared to be very similar to Stuxnet," Symantec wrote on its official blog Tuesday. "They named the threat 'Duqu' [dyü-kyü] because it creates files with the file name prefix '~DQ'."

"Parts of Duqu are nearly identical to Stuxnet, but with a completely different purpose," Symantec wrote. "Duqu is essentially the precursor to a future Stuxnet-like attack. The threat was written by the same authors (or those that have access to the Stuxnet source code) and appears to have been created since the last Stuxnet file was recovered."

So what is Duqu supposed to do? According to Symantec, "to gather intelligence data ... [from] industrial control system manufacturers, in order to more easily conduct a future attack against another third party. The attackers are looking for information such as design documents that could help them mount a future attack on an industrial control facility."

"The real surprising thing for us is that these guys"--the creators of Stuxnet--"are still operating,' Stuxnet expert O Murchu told Zetter."We thought these guys would be gone after all the publicity around Stuxnet. That's clearly not the case. They've clearly been operating over the last year. It's quite likely that the information they are gathering is going to be used for a new attack. We were just utterly shocked when we found this."

"Obviously this is a sensitive topic, and for whatever reason, they've decided at this point they don't want to be identified," O Murchu told Zetter, "referring to earlier beliefs about Stuxnet had been created by a nation state with the aim of sabotaging Iran's nuclear program."

Read Zetter's post on Son of Stuxnet, her previous comprehensive report on the "digital detective work that deciphered Stuxnet," and Symantec's Oct. 17/18 analysis of Duqu here.

Other popular Yahoo! News stories:

Atomic swag-ger: Iran chutzpah on display at nuclear conference

French spy chief investigated for spying on journalists

Iran leaders react to U.S. assassination plot claims

Corruption accusations up against U.S. border agents

Want more of our best national security stories? Visit The Envoy or connect with us on Twitter.

Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Yahoo Sports
Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’
The 2024 Yankees have rediscovered their bravado and hold the second-best record in the AL, thanks in large part to the superstar outfielder.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.
Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Report: Suns fire head coach Frank Vogel after 1st-round playoff sweep, eyeing Mike Budenholzer as replacement
Frank Vogel's out after one season in Phoenix failed to produce a playoff win.
Yahoo Sports
Six quarterback situations to worry about & three that are on the precipice | Zero Blitz
Jason Fitz, Charles Robinson and Frank Schwab talk about which quarterback rooms concern them and which they find interesting heading into the 2024 NFL season.
Yahoo Sports
2024 Fantasy Football Mock Draft, 1.0
The Yahoo Fantasy football crew got together for their very first mock draft of 2024. Andy Behrens recaps the results.
Yahoo Sports
Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful
Teams have made their big splashes in free agency and made their draft picks, it's time for you to do the same. It's fantasy football mock draft time. Some call this time of year best ball season, others know it's an opportunity to get a leg up on your competition for when you have to draft in August. The staff at Yahoo Fantasy did their first mock draft of the 2024 season to help you with the latter. Matt Harmon and Andy Behrens are here to break it all down by each round and crush some staff members in the process.
Yahoo Finance
Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'
Ryan says he would be writing in a Republican candidate instead of voting for Donald Trump.
Yahoo Sports
Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1
It’s key to note that we’re not saying the “best team” or “best roster.” Instead, we’re talking about the best confluence of factors that can outline a path for survival and then success.
Yahoo Sports
Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from
With free agency and the draft behind us, what 32 teams look like today will likely be what they look like Week 1 and beyond for the 2024 season. Matt Harmon and Scott Pianowski reveal the post-draft fantasy power rankings. The duo break down the rankings in six tiers: Elite offensive ecosystems, teams on the cusp of being complete mixed bag ecosystems, offensive ecosystems with something to prove, offenses that could go either way, and offenses that are best to stay away from in fantasy.
Yahoo Sports
Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing
The Cardinals' nightmare season continues.
Yahoo Sports
Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap
Jake Mintz & Jordan Shusterman discuss the Padres-Marlins trade that sent Luis Arraez to San Diego, as well as recap all the action from this weekend in baseball and send birthday wishes to hall-of-famer Willie Mays.
Yahoo Sports
Fantasy Baseball Weekend Preview: Get ready for some offense
Fantasy baseball analyst Fred Zinkie offers up his blueprint for conquering the final days of Week 6.
Yahoo Sports
What's wrong with the Denver Nuggets? | Devine Intervention
Dan Devine and Adam Mares discuss the Denver Nuggets and Minnesota Timberwolves after Monday night’s game 2.
Yahoo Finance
Recession-proof stocks are leading the market's latest leg higher
The Utilities and Consumer Staples sectors have popped since mid-April as investors search for value.
TechCrunch
Nintendo finally confirms the Switch 2 is on the way
In the most anticlimactic way possible, Nintendo on Tuesday confirmed years of rumors: The Nintendo Switch 2 console is on the way. "We will make an announcement about the successor to Nintendo Switch within this fiscal year," wrote Shuntaro Furukawa, the president of Nintendo, on X. Rather, Furukawa wanted to warn users not to expect the actual announcement in next month's Nintendo Direct livestream.
Yahoo Sports
Fantasy Baseball Trade Analyzer: Buy into a pair of Astros sluggers
Fantasy baseball analyst Fred Zinkie offers up his top buy low/high and sell low-high candidates for Week 6.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Meet Duqu, suspected precursor to next-gen Stuxnet cyber attack

Recommended Stories

The FDIC change that leaves wealthy bank depositors with less protection

Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

Former NBA guard Darius Morris dies at 33

Report: Suns fire head coach Frank Vogel after 1st-round playoff sweep, eyeing Mike Budenholzer as replacement

Six quarterback situations to worry about & three that are on the precipice | Zero Blitz

2024 Fantasy Football Mock Draft, 1.0

Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful

Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'

Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1

Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from

Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing

Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap

Fantasy Baseball Weekend Preview: Get ready for some offense

What's wrong with the Denver Nuggets? | Devine Intervention

Recession-proof stocks are leading the market's latest leg higher

Nintendo finally confirms the Switch 2 is on the way

Fantasy Baseball Trade Analyzer: Buy into a pair of Astros sluggers

The best budgeting apps for 2024