wiredmikey writes "New research from Kaspersky Labs has revealed that the platform dubbed "tilded" (~d), which was used to develop Stuxnet and Duqu, has been around for years. The researchers say that same platform has been used to create similar Trojans which have yet to be discovered.
Alexander Gostev and Igor Sumenkov have put together some interesting research. The key point being the person(s) behind what the world knows as Stuxnet and Duqu, have actually been using the same development platform for several years.
"The drivers from the still unknown malicious programs cannot be attributed to activity of the Stuxnet and Duqu Trojans," explained Alexander Gostev, Chief Security Expert at Kaspersky Lab. "The methods of dissemination of Stuxnet would have brought about a large number of infections with these drivers; and they can’t be attributed either to the more targeted Duqu Trojan due to the compilation date." “We consider that these drivers were used either in an earlier version of Duqu, or for [an] infection with completely different malicious programs, which moreover have the same platform and, it is likely, a single creator-team,” Gostev explained.
"The platform continues to develop, which can only mean one thing – we’re likely to see more modifications in the future," the research concluded."
Link to Original Source