One of the Twitter feeds MiniDuke-infected machines use to locate a command-and-control server.
Kaspersky Lab
Unidentified attackers have infected government agencies and organizations in 23 countries with highly advanced malware that uses low-level code to stay hidden and Twitter and Google to ensure it always has a way to receive updates.
MiniDuke, as researchers from Kaspersky Lab and Hungary-based CrySyS Lab have dubbed the threat, bears the hallmark of viruses first encountered in the mid-1990s, when shadowy groups such as 29A engineered innovative pieces of malware for fun and then documented them in an E-Zine by the same name. Because MiniDuke is written in assembly language, most of its computer files are tiny. Its use of multiple levels of encryption and clever coding tricks makes the malware hard to detect and reverse engineer. It also employs a method known as steganography, in which updates received from control servers are stashed inside image files.
In another testament to the skill of the attackers, MiniDuke has taken hold of government agencies, think tanks, a US-based healthcare provider, and other high-profile organizations using the first known exploit to pierce the security sandbox in Adobe Systems' Reader application. Adding intrigue to this, the MiniDuke exploit code contained references to Dante Alighieri's Divine Comedy and also alluded to 666, the Mark of the Beast discussed in a verse from the Book of Revelation.
- Adobe Systems
- Antivirus software
- Ars Technica
- availability services
- Belgium
- Bloomberg
- Boldizsar Bencsath
- Brazil
- command server
- Computer network security
- computer security
- Computer virus
- Computer worm
- CrySyS Lab
- CrySyS Lab
- Cyberwarfare
- Czech Republic
- Dan Goodin
- Dante Alighieri
- encryption
- espionage
- exploit tool
- FireEye
- Germany
- gif
- healthcare
- Hungary
- Ireland
- Israel
- Japan
- Kaspersky Anti-Virus
- Kaspersky Lab
- Kaspersky Lab.
- Kurt Baumgartner
- Law & Disorder
- malware
- Malware
- North Atlantic Treaty Organization
- Portugal
- Purim
- Reader
- Reader application
- resilient infrastructure
- Risk Assessment
- Romania
- Russia
- Spain
- Spyware
- Stuxnet
- System software
- Technology Lab
- Tehran
- The Associated Press
- Ukraine
- United Kingdom
- United States
CSS’ simplicity has always been one of its most welcome features. But as our sites and apps get bigger and become more complex, and target a wider range of devices and screen sizes, this simplicity—so welcome as we first started to move away from font tags and table-based layouts—has become a liability. Fortunately, a few years ago developers Hampton Catlin and Nathan Weizenbaum created a new style sheet syntax with features to help make our increasingly complex CSS easier to write and manage—and then used a preprocessor to translate the new smart syntax into the old, dumb CSS that browsers understand. Learn how Sass (“syntactically awesome style sheets”) can help simplify the creation, updating, and maintenance of powerful sites and apps.
- Adobe Systems
- Alpha
- Blueprint
- Cascading Style Sheets
- Chris Eppstein
- Code CSS Scripting
- command line tool
- Computing
- David Demaree
- eponymous personal site
- food
- GitHub
- grid systems
- Hampton Catlin
- HTML
- HTML
- HTML
- HTML element
- JavaScript
- layout systems
- media queries
- Mixin
- Nathan Weizenbaum
- php
- php
- regular web designers
- Ruby
- Ruby programming language
- Sass
- Sass
- Sass processor
- Style sheet
- Web design
- Web development
- World Wide Web
