F-Secure article tipped me off to a new Stuxnet variant. It also points to a well written paper by Symantec about it called w32 duqu: the precursor to the next stuxnet. The Symantec pdf (and it's included original write-up from some unknown security company) does not mention the name of the company whose cert was stolen, but the F-Secure article notes that it was "C-Media Electronics Incorporation."