Duqu-like viruses to continue in 2012, says Symantec

Symantec wraps up its security trends for 2011.
  • CIO Staff (Unknown Publication)
  • 04 December, 2011 22:00

Senior intelligence analyst for Symantec, Paul Wood, says advanced persistent threats like the Duqu worm will continue to be a problem for companies and organisations in 2012. Duqu is a sophisticated remote access trojan designed to collect and transmit sensitive information from the machines it infects.

It was discovered earlier this year by the Laboratory of Cryptography and Systems Security (CrySys) at Budapest University, and is believed to be related to the Stuxnet malware which disrupted Iran's Natanz nuclear facility last year.

In a Symantec blog post wrapping up security trends for 2011, Wood says Duqu was likely to have been created to gather intelligence for a future attack on an industrial control facility.

“It’s quite likely that 2011 saw the foundation for the next Stuxnet-like attack being laid,” says Wood.

Wood also touches on the rise of mobile malware in 2011.

He says the explosion in smartphone sales across the world makes it a desirable medium for cybercriminals.

“From malware simply seeking to embarrass victims to malware exploiting premium rate number billing, to malware focused on information theft, it’s undeniable that 2011 was the first year mobile malware presented a true threat to enterprises and customers,” says Wood.