destrekor
Lifer
It sounds like this worm was tasked with only infecting other PCs to serve as stepping-stones to the actual target - in short, it looks like it caused zero damage to neutral PCs, and only did its duties on PCs related to the target.
-
We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.
Wow! The Brilliance of Stuxnet!
Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
It sounds like this worm was tasked with only infecting other PCs to serve as stepping-stones to the actual target - in short, it looks like it caused zero damage to neutral PCs, and only did its duties on PCs related to the target.
So I read in some details that when it finds itself on a network that matches its criteria (software version number), it hooks into the central SQL database and login via a vendor backdoor access and start running database queries to modify the plant configuration. You're pretty much screwed at this point short of nuking the whole network and start from scratch to be really sure. They're still finding new bits and pieces on the worm as it goes.
Fenixgoon
Lifer
disagree - it is a means to an end. once you destroy your enemy's networks, infrastructure, and manufacturing capability, they cannot communicate or produce anything, and then you really lay the hurt on.
lxskllr
No Lifer
Yea, there's no substitute for actually capturing, and holding land.
DrPizza
Administrator Elite Member Goat Whisperer
I agree 100%. They can't be that stupid in Iran. Seriously - if you have a set of secure computers, no one setting that system up is stupid enough to allow flash drives or any other drives to be connected from outside the facility. Thus, the vector of attack suggested by the article is likely false. Putting that much time and effort into a vector of attack that shouldn't have succeeded seems unlikely. However, what if they did it via hardware? i.e. the "virus" was transported in via some chip in some hardware component that would likely be replaced or upgraded?
MarkXIX
Platinum Member
You would be surprised at the ingenuity and idiocy of people on government owned computer networks.
You would think that there should be no reason for people to air gap classified data onto unclassified networks, but they do it all the time. All it takes is a single person to override the security architecture in just one place and the whole system is essentially compromised.
You would think that there should be no reason for people to air gap classified data onto unclassified networks, but they do it all the time. All it takes is a single person to override the security architecture in just one place and the whole system is essentially compromised.
SantiClaws
Senior member
The article is worded badly. This is the key phrase:
The servers monitored progress on computers outside the secure facility. If flash drives were carried back and forth, it is possible the virus was capable of reporting progress inside the facility as well.
Rubycon
Madame President
The Boston Dangler
Lifer
i seem to remember hearing that the opening shot of operation desert storm was a virus embedded on the board of a printer.
sactoking
Diamond Member
For those wondering about how the virus got access, you're overlooking a key point: as stated in the article the system was isolated from the World Wide Web to prevent attack, it was not isolated from all possible outside communication systems. Presumably it was on a government network of some sort. If you gain access to that network through some other point of entry (say another agency) the worm can proceed along other channels.
pcslookout
Lifer
Interesting. My bets of who did it is Russia or The United States.
pcslookout
Lifer
Are you so sure about that? People could still die easily. Depends on what happens or what they attack.
Freshgeardude
Diamond Member
im not so sure russia was involved in making the virus.
they have been helping build (and of course profit) from the bush (idk the full name) nuclear facility.
why would they want to lose money?
they have been defiant with UN sanctions (as well as china) until recently because they both stand to have their economies suffer from a sanctioned iran.
imo, the US, Germany, and Israel combined could have made this together.
the US and Israel both obviously dont want a nuclear iran, and im sure germany doesnt either.
sorry to make this P&N ish but it comes with the topic
they have been helping build (and of course profit) from the bush (idk the full name) nuclear facility.
why would they want to lose money?
they have been defiant with UN sanctions (as well as china) until recently because they both stand to have their economies suffer from a sanctioned iran.
imo, the US, Germany, and Israel combined could have made this together.
the US and Israel both obviously dont want a nuclear iran, and im sure germany doesnt either.
sorry to make this P&N ish but it comes with the topic
MarkXIX
Platinum Member
How would they lose money? If the system is slowly destroyed, they make a killing replacing "bad" parts in the system and doing the repair work themselves. Seems like a win/win to me.
Freshgeardude
Diamond Member
with economic sanctions and physical crippling of the reactors.
the goal of the US and israel is for Iran to stop their nuclear program.
if it comes to that, russia will lose money
destrekor
Lifer
Well I never said it would replace conventional warfare fought with bodies.
For as long as we retain our animalistic tendencies, we will quarrel over anything and everything. And we will need bodies at the location of whatever we wish to declare, "This is ours!"
But it will save the lives of soldiers.
However, in the end, deathtolls of warfare won't exactly decline because of it. Soon, I reckon, cyber warfare will simply be a type of lethal weapon in some instances. You cause certain vital infrastructures to malfunction, and people may die.
We're not far from a time where nothing even has to be made into a weapon to actually cause mass casualties. If you use code to cripple or shut down critical infrastructures, people will die. Oil, gas, water, electricity - all things developed civilization depends upon, and if permanently lost for a period of time, it will take society a certain amount of time to adapt.
Boots on the ground will never be completely removed from the situation, at least not for the foreseeable future of mankind - we've known it true for our entire existence. And yet, there may be a time they are needed less and in lower numbers.
Engineer
Elite Member
The Boston Dangler
Lifer
your comment is pretty stupid.
why are they stupid? because they were defeated? napoleon, rommel, kasparov, and a million other geniuses have been defeated at some point. once the west decided to commit the resources to accomplishing this objective, no amount of leet skillz was going to stop it.
nor are they stupid because they come from a country 5 minutes from the stone age. just because a nation has little or no running water doesn't mean there aren't very educated people performing work on a high level, particularly in the year 2010.
It wasn't until 2-4 years ago that DoD/Pentagon banned the use of flash drives in their computer systems.
If we only banned them just 2-4 years ago, what makes you think Iran(or some other country) would have done that?
I remember reading an article about us banning flash sticks at the Pentagon/DoD a few years ago..Wish I could find it. May have even been on AT P/N here itself.
Bruce Schneier has a better, more technical article. He also provides links to other sources, with this Symantic reverse engineering analysis of the virus probably being the most interesting.
This.
If Russians were interested in success, they would have finished the plant on schedule by 1999(or around that time) as was originally proposed in the Russian-Iranian agreement.
The Russians(like all other contractors such as Boeing, Lockheed Martin, etc... that cheat on defense contracts by underbidding along with other strategies) are only interested in milking the system.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 25K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 24K
-
-
