The Laboratory of Cryptography and Systems Security (Crysys) at Budapest University has reported that the Duqu computer infection was spread with the help of an infected Microsoft Word document. As well, new information has emerged on the massive cyber attack on RSA's SecurID tags , and Norton has announced a new tablet security product.

Microsoft is preparing a software patch to address the Duqu code, which is believed to have been designed to gather intelligence from industrial control-systems.

Internet security firm Symantec has confirmed the Duqu infection at six different computer networks belonging to unidentified organizations across a total of eight countries including Iran, India, France and Ukraine. So far neither Symantec nor Crysys have been able to trace who is receiving the data. Efforts to address the exploit are ongoing.

Massive hack hit 760 companies

New analysis has shown that a massive cyberattack that led to a vulnerability in RSA's SecurID tags earlier this year also victimized Google, Facebook, Microsoft and many other Fortune 500 companies.

Reporting on his blog, security analyst Brian Krebs said that Congress has received a list of 760 organizations that were attacked. The list includes about a fifth of the Fortune 100, as well as many other large corporations.

The list includes: Abbot Laboratories; Charles Schwab; Freddie Mac; PriceWaterhouseCoopers; and Wells Fargo. Tech giants on the list include: Amazon; IBM; Intel; Yahoo; Cisco; Google; Facebook; and Microsoft. Government agencies included: the European Space Agency; the IRS; the General Services Administration. Government security contractor Northrop Grumman was also on the list, as was MIT.

Krebs wrote that the list of affected companies was obtained from a breached "command and control" server. The names came to light after researchers traced back the corporate networks that were communicating with the server that attacked RSA.

It is important to note that although many Internet service providers were on the list, this was probably because their subscribers were attacked using their network, not because the companies themselves were compromised.

Norton announces new tablet security product

Norton by Symantec has announced the availability of Norton Tablet Security and new updates for Norton Mobile Security, including a new “Scream” feature that helps users find a lost or stolen phone quickly.

Available through retail partners, this new offering is designed specifically for Android tablets to protect the device, as well as the user’s privacy and important data, against loss, theft, viruses, and other threats through the following features:

Web-based Anti-Theft. By logging in through a web browser, users can access anti-theft features that include the ability to remotely lock a lost or stolen device, preventing information from being stolen. Users can also add a default or custom “device lost” message to the lock screen. A lost or stolen tablet can also be located on a map, which shows the device’s most recent locations. For those who want to see who may have their device, the “Sneak Peek” feature remotely takes a photo using the front-facing tablet camera and uploads the picture to the anti-theft site that stores and displays the most recent pictures.

Anti-Malware. Automatically scans all the apps and app updates downloaded to the mobile device and SD card for threats.

Web Protection. Norton Safe Web technology alerts on fraudulent and malicious websites, protecting the device from content accessed or downloaded over mobile networks and Wi-Fi connections, without slowdowns or interruptions.

Mobile features

Also available through retail partners, the updated mobile offering now includes web-based anti-theft functions and a “Scream” locator feature that lets users send a text to their missing phone to remotely activate an alarm, helping them locate their device. Users who have already purchased a version of Norton Mobile Security will receive these new feature updates through their existing product subscription:

SMS-Based Antitheft features. In addition to the “Scream” locator feature users can remotely locate, lock and wipe their device through SMS commands. Users can also create a buddy list, specifying trusted contacts (like friends or family) who can send an unlock code through their phone.

Web-Based Antitheft features. Users can remotely locate and locate their device through the antitheft.norton.com web portal. A web-based feature, “Lost Notice,” allows users to display a  customizable message to anyone who finds the missing device so the owner can make arrangements to get it back. Norton Mobile Security also includes a “Sneak Peek” feature that remotely takes a photo using the front-facing camera and uploads the picture to the anti-theft site.

Privacy features. Protects personal information from phishing scams and allows users to avoid unwanted communications. Users can browse safely while Norton Safe Web technology alerts on fraudulent and malicious websites, protecting the device from content accessed or downloaded over mobile networks and Wi-Fi connections, without slowdowns or interruptions. Call and text blocker also let users block calls and text messages from specific people or phone numbers.

Anti-Malware. Automatically scans all the apps and app updates downloaded to the mobile device and SD card for threats.