Microsoft has released a security alert stating that its MS-signed certificates have been compromised by the complicated malware known as Flame. The compromising of its signed certificates and the possibility of Microsoft Update being utilized as a malware delivery mechanism pushed Microsoft to release a patch to resolve the issue.
Flame’s exploitation of Microsoft Update with its spoofed Microsoft-signed digital certificates means that there is very real possibility that the delivery system could become a widespread spreader of malware of all kinds. An unauthorized certificate could be used to spoof content, perform phishing attacks, or attack systems under the guise of Microsoft. This issue affects all supported releases of Microsoft Windows.
A successful Flame attack drops a file called WuSetupV.exe on to the target computer, which causes WuSetupV.exe errors to occur. WuSetupV.exe errors are considered among the most severe system errors by PC experts. WuSetupV.exe is a critical system component, as it enables dynamic link library files (files that enable executable programs to communicate with specific devices, like a printer) to run smoothly and it keeps the system operating stably. In addition, WuSetupV.exe can serve as a hacker tool to gain remote access to a compromised PC’s personal or commercial information, including identity details, email information, Internet behavior and login credentials to credit cards and online bank accounts.
To patch, visit Microsoft Security Advisory (2718704) Unauthorized Digital Certificates Could Allow Spoofing.