You are here

Will Stuxnet kill portable apps??

10 posts / 0 new
Last post
hootowls
Offline
Last seen: 2 years 9 months ago
Joined: 2010-08-17 13:47
Will Stuxnet kill portable apps??

I have been reading with interest the continuing saga of the Stuxnet worm. It seems the new transmission method of choice is spreading Worms/Trojans using Flash drives. I was infected from an Apple with the Boot13 worm and I was frankly surprised at how easily it got me. I was also surprised how hard it was to remove.

I love Portable Apps. I do not feel comfortable installing software on my work computer and Portable Apps gives me the tools I needs. I have to wonder if the Stuxnet worm will be the straw that breaks the camel's back and gets PCs locked down. Every time IT walks down the hall, I wait for it.

See excerpted cnet story below:
The attack involves several components: a worm that spreads via USB drives and exploits a previously unknown vulnerability in Windows and a Trojan backdoor that looks to see if an infected machine is running a specific type of software created by Siemens used in control systems including industrial manufacturing, utilities and even nuclear powered aircraft carriers.

The worm, dubbed Stuxnet, propagates by exploiting a hole in all versions of Windows in the code that processes shortcut files, ending in ".lnk," according to a Microsoft Malware Protection Center blog post. Merely browsing to the removable media drive using an application that displays shortcut icons, such as Windows Explorer, will run the malware without the user clicking on the icons. The worm infects USB drives or other removable storage devices that are subsequently connected to the infected machine. Those USB drives then infect other machines much like the common cold is spread by infected people sneezing into their hands and then touching door knobs that others are handling.

Read more: http://news.cnet.com/8301-27080_3-20011159-245.html#ixzz10qXG7ZoV

hootowls

solanus
solanus's picture
Offline
Last seen: 11 years 1 week ago
Joined: 2006-01-21 19:12
Nope.

Nope.

I made this half-pony, half-monkey monster to please you.

Simeon
Simeon's picture
Offline
Last seen: 11 years 1 week ago
DeveloperTranslator
Joined: 2006-09-25 15:15
no

I am not as sure as Solanus, but I hope not.

"What about Love?" - "Overrated. Biochemically no different than eating large quantities of chocolate." - Al Pacino in The Devils Advocate

consul
consul's picture
Offline
Last seen: 8 months 4 weeks ago
Joined: 2007-05-02 13:47
i can't imagine it ...

where they would lock down usb's. I am not sure how it is in mega corporate offices but so many peripherals are now usb, could they block off just certain USB ports?
Would they make everything connected via ethernet?

Don't be an uberPr∅. They are stinky.

OliverK
OliverK's picture
Offline
Last seen: 4 years 4 months ago
Developer
Joined: 2007-03-27 15:21
This shortcut vuln was

This shortcut vuln was patched recently. Microsoft released an emerency patch for it. IT should have updated the machines.

Too many lonely hearts in the real world
Too many bridges you can burn
Too many tables you can't turn
Don't wanna live my life in the real world

solanus
solanus's picture
Offline
Last seen: 11 years 1 week ago
Joined: 2006-01-21 19:12
You got it from an Apple? I

You got it from an Apple? I thought Macs didn't get viruses!
Or maybe it was just a carrier for a Windows virus...

It's possible that the IT group did deploy the Windows patch, but couldn't clean the Mac computers. I guess we should stop using Macs, then!
Wink

I made this half-pony, half-monkey monster to please you.

hootowls
Offline
Last seen: 2 years 9 months ago
Joined: 2010-08-17 13:47
Yes, It came from an Apple

Correction - It was Drive13, not boot13.

It is transferred from Apple to Apple, with no harm or damage. It just loads a folder on any thumb drive inserted in that machine. Then when the thumb drive is used with a Windows machine, it infects the Windows machine and any thumb drives used with that machine. It is believed to harvest passwords...

So in the Windows world, an Apple a day, will not keep the virus away?!?

hootowls

GrahamG
Offline
Last seen: 11 years 11 months ago
Joined: 2009-06-26 10:28
Classic!

"So in the Windows world, an Apple a day, will not keep the virus away?!?"

I really liked that phrase!

Just on the USB lockdown point: my workplace seems to have done just that. Normally I've been able to backup my work files to USB and then work on them at home. Last Thursday I came to do the same and the USB drive could not be seen by the work PC and yet in the USB port right next to the one I was using was a USB cable for a telephone headset. So, presumably IT can lock down specific USB devices?

Cheers,
GrahamG

Cambridge, UK

Darkbee
Darkbee's picture
Offline
Last seen: 5 years 5 months ago
Joined: 2008-04-14 09:41
None

There are different classes of USB devices like Flash drives are usually Mass Storage Class. I presume you could lock it down by class. That kinda sucks, I hope your work has a rock solid backup policy, especially for files on your local PC.

pa_5740
Offline
Last seen: 15 years 3 weeks ago
Joined: 2010-07-09 01:51
Something that you might want to look at
Log in or register to post comments