Microsoft aims barrage of fixes at Stuxnet and more

Oct 12, 2010
Microsoft on Tuesday released a record high number of software patches aimed at countering computer threats including a Stuxnet "worm" attacking industrial networks.

Microsoft on Tuesday released a record high number of software patches aimed at countering computer threats including a Stuxnet "worm" attacking industrial networks.

The 49 fixes released by were ranked in importance from "critical" to "moderate" and addressed vulnerabilities in an array of Microsoft programs used in personal computers.

"Users should apply these patches ASAP," said Trend Micro threat researcher Ivan Macalintal. "It should be a top priority."

The unprecedented number of fixes promised to make installing the patches a chore for technology workers managing business networks.

"The release is humongous; a record breaker," Macalintal said. "I think it is going to be a headache, especially for enterprise (business systems)."

Microsoft bulletin MS10-073 indicated a patch for a vulnerability that Stuxnet "currently leverages."

Stuxnet targets control systems made by German industrial giant Siemens commonly used to manage water supplies, oil rigs, and other industrial facilities.

Stuxnet has been dubbed the world's "first cyber superweapon" by experts, and has wreaked havoc on computerized industrial equipment in Iran.

Microsoft previously patched two of the four vulnerabilities that Stuxnet took advantage of in Windows-based computer networks. The patch released on Tuesday is intended to close a third door to the .

The vulnerability exploited by Stuxnet allowed an elevation of control privileges for the program once it was in a Windows-based network, according to Kaspersky Lab Americas senior anti-virus researcher Roel Schouwenberg.

"As such I think the real life impact on the spread of Stuxnet will be rather limited," Schouwenberg said.

"Machines are either going to be already patched for the remotely exploitable vulnerabilities which would introduce Stuxnet onto the system or they're not going to have any of the Stuxnet related patches installed."

Analysts say may have been designed to target Iran's nuclear facilities, especially the Russian-built first atomic power plant in the southern city of Bushehr.

Explore further: Tecnalia designs an app to help elderly people get around on public transport

add to favorites email to friend print save as pdf

Related Stories

Stuxnet worm rampaging through Iran: IT official

Sep 27, 2010

The Stuxnet worm is mutating and wreaking further havoc on computerised industrial equipment in Iran where about 30,000 IP addresses have already been infected, IRNA news agency reported on Monday. ...

World's first 'cyber superweapon' attacks China

Sep 30, 2010

A computer virus dubbed the world's "first cyber superweapon" by experts and which may have been designed to attack Iran's nuclear facilities has found a new target -- China.

Recommended for you

Google worker shows early-draft glimpse of Chrome OS

Jul 20, 2014

The Chrome OS is in for a future look. Athena, a Chromium OS project, will bring forth the new Chrome OS user experience. Google's Fran├žois Beaufort on Friday, referring to the screenshot he posted, said," ...

Google eyes Chrome on Windows laptop battery drain

Jul 19, 2014

Google Chrome on Microsoft Windows has been said to have a problem for some time but this week comes news that Google will give it the attention others think the problem quite deserves. Namely, Google is to ...

Mental-health monitoring goes mobile

Jul 16, 2014

Behavioral health analytics startup Ginger.io sees smartphones as "automated diaries" containing valuable insight into the mental well-being of people with mental illnesses.

User comments : 0