Kleissner&Associates have been monitoring Stuxnet

Dec 19, 2013 15:36 GMT  ·  By

Security researchers from Kleissner&Associates have been able to monitor global active Stuxnet infections because the company owns part of the threat’s command and control (C&C) infrastructure. Apparently, there still are some computers infected with Stuxnet, including in Iran.

Stuxnet, a piece of malware allegedly developed by the US and Israel, became notorious back in 2010 when it was used in cyberattacks aimed at Iran’s nuclear facilities.

According to experts, since the beginning of December 2013, they’ve spotted a total of over 1.27 million infections in Iran. The most common piece of malware is apparently ZeroAccess with 64% of infections.

As far as Stuxnet is concerned, active infections have been observed inside several organizations, including telecoms companies, IT companies and even a university. It’s worth pointing out that most of the victims appear to be telecommunications services providers (ISPs and hosting companies).