Researchers have intercepted one of the files that actually installs the Duqu malware. Researchers say Duqu is exploiting a zero day vulnerability in Microsoft Word to spread. The worm is built on the same core code as the Stuxnet worm that plagued the Internet a year ago. Duqu seems to be actually targeting U.S. assets and allies, but it does not seem likely that it was developed by the same team that developed the worm that targeted Iranian nuclear facilities. Microsoft is reportedly working diligently to publish a security advisory and develop a patch.”]
Source: https://www.csoonline.com/article/2130065/duqu-worm-targets-microsoft-zero-day-flaw.html