Microsoft has just announced that they have a Fix-it tool that allows Windows users to manually patch their systems to remove the Duqu Trojan.
Duqu, or son of Stuxnet as it is also know, can be a real nuisance because it installs a keylogger to record passwords and uses those passwords toreplicates itself across secure networks. Then it communicates with other servers over the Internet to give hackers access to the infected computers. Then it will remove itself after 30 days.
Microsoft is investigating a vulnerability in the Win32k TrueType font parsing engine Windows component. An attacker who successfully exploits this vulnerability could then run arbitrary code in kernel mode. This would allow the attacker to install programs as well as view, change, or delete data. Plus they would have access to create new accounts with administrative access.
Microsoft has released a Fix-it tool that allows users to manually disable the affected code in their systems. One downside to this tool is that applications that rely on embedded font technology will fail to display properly according to Microsoft.
Here is a link to the Fix-it tool
http://support.microsoft.com/kb/2639658
No comments:
Post a Comment