A backdoor trojan, dubbed Duuzer, is targeting the manufacturing industry in South Korea, according to an alert issued by Symantec researchers.
The malware affects Windows 7, Windows Vista, Windows XP, the alert said. It can allow an attacker to gather system and drive information, create, enumerate, and end processes, as well as access, modify, and delete files, according to an Oct. 26 blog post.
Duuzer can also upload and download files, change the time attributes of files and execute commands.
Researchers observed attackers attempting to disguise the malware by renaming it with a title similar to an existing legitimate program on a victim's device.
Symantec recommended changing default user names and passwords, avoiding common or easy-to-guess passwords, ensuring the operating system and software are regularly updated to prevent exploitation of known vulnerabilities, not opening suspicious emails and keeping security software definitions up-to-date.
