labrat is the coolest logon ever!

Stuxnet is a false flag cyber attack launched by Iran to justify a kinetic attack on a third-party nation state. Seek the truth.

Has this been patched yet?

its the gonasyphaherpaleze of sneakernet!!!

@klemv20 ok well show me since you think it's so easy.

Sophos's tool only protects against .lnk files, not against .pif files.

Great that Sophos quickly had a signature for the threat, but AV is basically an ineffective, reactive solution for zero-day threats like this. More proactive solutions like Application Whitelisting exist that are proactive and prevent any new code from running, which would have negated this threat and all others like it. Much better fit in closely controlled environments like those that run Siemens Process Control software,. The better solutions also stop in-memory attacks too.

Does Sophos Anti-Virus detect the particular malware or the exploit being used?

This is a very sophisticated attack. This worm is looking to infect systems that run Siemens SCADA (software that run power plants, nuclear aircraft carriers). It uses a signed digital certificate stolen from Realtek. Disabling Autoplay will not stop this. You just need to browse to the folder with the files. I can't believe they run nuclear aircraft carriers on windows. Hope these people changed the default password.

this is nonsense...

Which rootkit is being used in this demonstration?

haha windows is junk

@muk546 Good joke.

@Borridd no joke its junk use linux or get a mac

@muk546 Linux isn't an operating system and Mac is marketing gone mad.

@muk546 macs are overrated and they suck when it comes to games (portal lagged like a son of a cock on my bothers mac) and linux isent an operationg system its a mod

@ThePsychoticScyth396 Lol at your Linux comment. I don't understand how anyone could justify linux not being an operating system. Especially how much it has deviated from unix.

i dont get it...

@Sketchfactory , yea mee to.. shity manual. ; /

vai a zappare

non è mica un bug di seven, con xp e vista si poteva fare la stessa cosa...

Lol that's a pure SHIT XD

We run Sophos on all of our ~ 40,000 PCs. We love it; the terms of the agreement allow me to run it at home!

If I wasn't running Linux..I'd be using Sophos as my AV.

Worry more about Malware, vulnerability through Virus's/root kits are less common. Virus's tend to attack servers rather than individual users. My guess this was on the 32bit version of Win 7 since Root kits can't execute code on a 64bit OS.

@blacksteel25 Certain kinds of root-kits might be de facto impossible on 64-bit installation but certainly not all of them.

Oh this is bad, very bad. I would have expected the malware to be executed with the same user rights as the user that launched it, instead it gets elevated rights. Ouch. There is a solution from MS but it is not pretty

Interesting......

Interesting demonstration, but does the actual virus itself do any other damage to the computer other than hide the shortcuts from Autoplay?