//
you're reading...
Security

Stuxnet

Just a quick note.
Introduction
The Stuxnet is a Worm that is designed to maliciously affect industrial installation based on Siemens[1] SCADA environment.
It simply reprogrammed them into a destructive pattern, these are physical industrial machines after all. It also gathered information on how the systems were being used and reported this “back to base“.
However, the targeting appears to be even more specific than that, reportedly directed specifically at the Iran Nuclear Programme. More accurately, the requirement for specific physical equipment (known to be used by that programme) to be attached to a SCADA system.
Obviously gaining access to these system should not be trivial so the redistribution mechanism of the malware is actually far more generic, requiring nothing more than an unpatched Windows System. It seems to spread easiest on USB drives.
Spread of the virus is worldwide therefore but harmless if the system does not match the programers “target”.
The level of conspiracy theories around the origin of the malware is astonishing. It cannot be denied that this is the most complex virus ever seen, using multiple undetected vulnerabilities, written in multiple languages and so highly targeted.
Sponsorship
The majority of speculation revolves around nation-state involvement, even direct involvement by Siemens, it is thought that such a complex program could take over 10,000 man-hours to write and perfect.
Coverage
Two Podcasts are covering this topic this week so I highly recommend a listen to what they have to say on Security Now![2] and How Stuff Works[3].
The Wikipedia[4] page is one of rue best constructed on such am issue and has many references that are worth reading up.
A simple search on Google or Bing will bring up many excellent article. Look for the Security Blogs.


References
[1]Siemens 11/03/2011
[2]Security Now! 17/02/2011
[3]How Stuff Works 17/02/2011
[4]Wilipedia (Stuxnet) 11/03/2011

– Posted using BlogPress from my iPhone

Advertisements

About harlekwinblog

"Thoughts of an idle mind." Information Security professional.

Discussion

No comments yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Categories

RSS This Blog…

  • An error has occurred; the feed is probably down. Try again later.

Share me…

Bookmark and Share

Twitter Updates

March 2011
S M T W T F S
« Feb   Apr »
 12345
6789101112
13141516171819
20212223242526
2728293031  
%d bloggers like this: