General discussion

Locked

Turns out the StuxNet Worm is on the side of the good guys.

By AbbyD ·
The massive StuxNet Worm that appears to have been designed for sabotage has been successfully implanted into the control system of the Iran nuclear reactor that recently came online to enrich uranium for Iran's weapons program.

DEBKA, an Israeli intelligence web site has reported that the Iranian government is in a state of crisis over this. The story entitled:
An alarmed Iran asks for outside help to stop rampaging Stuxnet malworm
can be viewed at: http://www.debka.com/article/9050/

Israeli Intel Sources via DEBKA report that a clandestine cyber war is being fought against Iran by the United States and Israel, using elite cyber war units established by Israel. Stuxnet is believed to be the most destructive virus ever devised for attacking major industrial complexes, reactors and infrastructure.

DEBKA Mahmoud Alyaee, secretary-general of Iran?s industrial computer servers, including its nuclear facilities control systems, confirmed that 30,000 computers belonging to classified industrial units had been infected and disabled by the malicious Stuxnet virus. The Iranian official said Stuxnet had been designed to strike the industrial control systems in Iran manufactured by the German Siemens and transfer classified data abroad.

The head of the Pentagon?s cyber war department, Vice Adm. Bernard McCullough said Thursday, Sept. 22, that Stuxnet had capabilities never seen before. In a briefing to the Armed Forces Committee of US Congress, he testified that it was regarded as the most advanced and sophisticated piece of Malware to date.

This conversation is currently closed to new comments.

6 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

naw,

by Jaqui In reply to Turns out the StuxNet Wor ...

it's terrorists wanting to get the tech to be able to nuke the U.S.A.

Collapse -

If done properly, a SCADA attack could be a real show-stopper

by robo_dev In reply to Turns out the StuxNet Wor ...

Ignoring the fact that SCADA is used for all the various pumps and monitors of a nuclear power plant, the bigger issue is that SCADA is used to control both primary power switchgear AND backup power generators.

So, for example, if a military communications center has SCADA controlled switchgear and SCADA controlled backup generators, and the battery systems that carry the load while the generator starts....these are all devices on the SCADA network.

So if you can own all these devices with malware, and the victim has no prior knowledge of the exploit, it would be possible to simply shut down something like a missle-defense site or a military communications center.

Now before we all panic, keep in mind that most SCADA networks are on closed private networks, and typically these machines are not connected to the Internet at all.

Also keep in mind that Stuxnet attacks Siemens SCADA stuff, not the brands that are more common in the US.

Collapse -

Depends on what you mean by, "good guys".

by seanferd In reply to Turns out the StuxNet Wor ...

Everyone has their own agenda, no one is trustworthy.

Collapse -

The enemy of my enemy is my friend.

by AbbyD In reply to Depends on what you mean ...

Whenever you have a maniac like Iranian President Mahmoud Ahmadinejad running the show who openly calls for the extermination of an entire country like Israel and is an avoid enemy of the United States, anything that throws his plans into a panic can be described as a good thing. Here are a few quotes from the DEBKA sources.

Ahmadinejad described the damage to Iran?s nuclear and military resources as more devastating than the Israel raid on Syria?s plutonium reactor at A-Zur exactly three years ago.

As Tehran gropes in the dark for a solution to the crisis caused by the malignant Stuxnet cyber worm to its vital strategic systems, Iranian President Mahmoud Ahmadinejad is reported by DEBKA-Net-Weekly?s Iranian sources as having warned Syrian PresidentBashar Assad when they met last in Damascus that he is gearing up for military revenge.

He reminded Assad that then, too, Israel and the US had worked together to destroy the Syrian-Iranian nuclear plant under construction by North Korea. Israeli cyber commando units, he said, simultaneously raided additional Syrian nuclear facilities and made off with nuclear materials, equipment and software which they passed to the United States.

At the end of last week, the Iranians reported 30,000 of their computers had been affected. Monday, September 27, some Iranian sources were talking about 45,000, including 30,000 in the Bushehr nuclear reactor and military facilities alone.

According to DEBKA-Net-Weekly, Tehran issued these low figures to downplay the scale of the damage for the benefit of the public. In reality, Western intelligence calculates that millions of computer systems and personal computers were struck. A Stuxnet invasion of just one sector, such as the military industry or banks, could disable three million computers in less than half an hour.

Israeli planners figured that paralyzing Iran?s nuclear program, defusing its military prowess and disabling Revolutionary Guards resources with a single electronic worm, would finally burst the balloon of Iran?s pretensions as a mighty regional power. Its innate vulnerabilities would be paraded, making even its Arab neighbors and allies, Syria, Hizballah and Hamas, sit up and note their iconic champion?s downfall.

Collapse -

Software isn't on anyone's "side".

by CharlieSpencer In reply to Turns out the StuxNet Wor ...

Like a firearm, software is a tool. Just because it's used this week in a fashion favorable to one group doesn't mean it won't be used against that same group in the future.

"Good guys" is a relative term too.

Collapse -

To clarify

by robo_dev In reply to Software isn't on anyone' ...

It is believed that Stuxnet is made specifically to find one particular system.

So even though it has infected something like 50,000 systems, it has not delivered it's payload to 49,999 of those systems. The thought is that Stuxnet is effectively a software weapon that will, on a certain date, do something very bad to that one system.

So on a SCADA network in a nuclear plant, that would be something like shutting down all cooling pumps, disconnecting all power to monitoring systems, then feeding bogus data to the operator panels while the core goes critical. Sounds like a Bond film, but it may be real.

Back to Networks Forum
6 total posts (Page 1 of 1)  

Related Discussions

Related Forums