ESET Threat Blog
David Harley

MS10-092 and Stuxnet

by David Harley Senior Research Fellow
December 15, 2010 at 3:54 am

I notice that among the 17 security bulletins just released by Microsoft on Patch Tuesday, MS10-092 addresses the Task Scheduler vulnerability prominently exploited by Win32/Stuxnet.

We will be updating our Stuxnet analysis shortly, but what's really notable about this bulletin for me is the fact that it draws on cooperation between Microsoft, itself an AV vendor, and other companies (Kaspersky, Symantec, Design and Test Lab and ourselves). After the ugly allegations of inter-company rivalry, corruption, unethical malware creation, rogue marketing and black ops in China, this sounds much more like the industry I know and am honoured to play a small part in.

David Harley CITP FBCS CISSP
ESET Senior Research Fellow

.

This entry was posted on Wednesday, December 15th, 2010 at 3:54 am and is filed under David Harley, MS10-92, patch management, vulnerability, Win32/Stuxnet. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

One Response to “MS10-092 and Stuxnet”

  1. jeff ives Says:
    December 15th, 2010 at 1:59 pm

    this is my problem looking forward to having this treat removed thanks

Leave a Reply

Share |
Subscribe by Email
To receive new posts automatically through email, enter your email address:

Delivered by FeedBurner

Blog Search
Categories
Authors
Tags
Adobe autorun Botnet Conficker Cybercrime Facebook google Malware Microsoft patch Phishing privacy SC Magazine Security Social Engineering Spam Stuxnet The Register Twitter Virus Bulletin
Archives

Switch to our mobile site