Viruses are capable of breaking down power plants and oil refining systems

Named Duqu by Symantec, the virus is capable of breaking the control system of power plants, refineries and other important infrastructure networks. Duqu was discovered in several computer systems in Europe.

This software is written by the creator of Stuxnet, or at least one who has direct access to it.

Researchers at Symantec said, like the brothers Stuxnet, Duqu was designed to infiltrate the industrial control system by manipulating SCADA (data collection and control systems). , govern the operation of the equipment. But Duqu 's approach to the system is different from Stuxnet.

Duqu has the ability to break down control systems of power plants

Instead of directly attacking SCADA, Duqu collects data from industrial control system manufacturers to make it easier to penetrate third parties. Duqu users can record keystrokes and system information, then transfer that information and collected data to a control and control server.

The Duqu disguises itself with a legal code, has a digital certificate at a Taiwanese corporation. According to F-Secure (Finnish security firm), the group is C-Media Electronics. The certificate is limited until August 2, 2012, but was canceled on October 14th.

Duqu is installed to run 36 days, after that, it automatically detaches itself from the system that is infected with the virus. According to Liam O Murchu, a leading Stuxnet expert, the software tries to disguise itself by attaching a 100 x 100 pixel jpeg file. Symantec representative said that the software has been used since December 2010. However, it has not been determined how they will penetrate the system.

Duqu is not capable of self-replication , but according to the researchers, 'Duqu is the precursor to future Stuxnet-type intrusions'.

The new Stuxnet family virus came into existence shortly after the US Domestic Security Agency (DHS) warned that the Anonymous hackers would quickly start sabotaging or paralyzing control facilities in the industry. But they also said that 'there is little possibility that Anonymous is responsible for these attacks'.