The Windows attack used by a recently discovered worm is being picked up by other virus writers and will soon become much more widespread, according to security vendor Eset. The Windows attack used by a recently discovered worm is being picked up by other virus writers and will soon become much more widespread, according to security vendor Eset.Eset reported Thursday that two new families of malicious software have popped up, both of which exploit a vulnerability in the way Windows processes .link files, used to provide shortcuts to other files on the system.The vulnerability was first exploited by the Stuxnet worm, discovered on computer systems in Iran last month. Highly sophisticated, Stuxnet targets systems running Siemens industrial control system management software. The worm steals SCADA (supervisory control and data acquisition) project files from Siemens’ computer systems.Siemens issued a Security Update for its customers on Thursday, but Microsoft has yet to patch the Windows bug that permits the worm to spread. The newly discovered malware is “far less sophisticated” than Stuxnet and “suggests bottom feeders seizing on techniques developed by others,” said Eset researcher Pierre-Marc Bureau, writing in a blog post.One of the new samples installs a keystroke logger, a tool hackers use to steal passwords and other data, on the victim’s computer. “The server used to deliver the components used in this attack is presently located in the US, but the IP is assigned to a customer in China,” Bureau said. The other variant could be used to install one of several different pieces of malicious software.As each new variant of the attack pops up, it adds pressure on Microsoft to patch the underlying vulnerability. Microsoft’s next set of security patches is due Aug. 10, but if enough customers get infected, the company may be forced to rush out an emergency patch for the issue.Microsoft has already posted a temporary workaround to the problem and says it is working on a patch.Right now, the Stuxnet worm makes up a very tiny volume — less than 1/100th of a percent — of the malware that Eset is seeing on the Internet, said Randy Abrams, Eset’s director of technical education, in an interview. However that’s likely to change. “It’s likely to become one of the most prevalent attack vectors,” he said. “I expect that within a few months, we’ll see hundreds if not thousands of pieces of malware using the link vulnerability.”Robert McMillan covers computer security and general technology breaking news for The IDG News Service. Follow Robert on Twitter at @bobmcmillan. Robert’s e-mail address is robert_mcmillan@idg.com Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe