The Cellar  

Go Back   The Cellar > Main > Technology

Technology Computing, programming, science, electronics, telecommunications, etc.

Reply
 
Thread Tools Display Modes
Old 09-25-2010, 07:25 PM   #1
Lamplighter
Person who doesn't update the user title
 
Join Date: Jun 2010
Location: Bottom lands of the Missoula floods
Posts: 6,402
Malware hits industrial equipment

I'm posting this article about "malware" because experts are saying it was authored by a government, not some kid working in his basement.

BITS article

September 24, 2010, 8:41 pm
Malware Hits Computerized Industrial Equipment
By RIVA RICHMOND

Quote:
The technology industry is being rattled by a quiet and sophisticated
malicious software program that has infiltrated factory computers.
The malware, known as Stuxnet, was discovered by VirusBlokAda,
<snip>in mid July, at least several months after its creation.
Quote:
Security experts say Stuxnet attacked the software in specialized industrial control equipment
made by Siemens by exploiting a previously unknown hole in the Windows operating system.
The malware marks the first attack on critical industrial infrastructure
that sits at the foundation of modern economies.
Quote:
Eric Chien, the technical director of Symantec Security Response,
a security software maker that has studied Stuxnet, said it appears
that the malware was created to attack an Iranian industrial facility.
Security experts say that it was likely staged by a government or
government-backed group, in light of the significant expertise
and resources required to create it.
Quote:
“It’s impossible this was created by some teenager in his basement,”
Mr. Chien said. “The amount of resources and man hours to put this together,”
he said, show “it has to be something that was state originated.”
Lamplighter is offline   Reply With Quote
Old 09-25-2010, 08:36 PM   #2
spudcon
Beware of potatoes
 
Join Date: May 2007
Location: Upstate NY, USA
Posts: 2,078
Oh, now I feel bad. No wonder Iran's leader has to lie about everything. He's got a virus!
__________________
"I believe that being despised by the despicable is as good as being admired by the admirable."
spudcon is offline   Reply With Quote
Old 09-25-2010, 08:36 PM   #3
xoxoxoBruce
The future is unwritten
 
Join Date: Oct 2002
Posts: 71,105
Their speculating it's a nation state. It's using several previously unknown holes in windows. It migrates to computers that don't connect to the web. It's not just Iran, India, Malaysia and eastern Europe too. It does no harm unless it finds specific industrial controls, like the unauthorized Siemens controls, Russia sold to Iran.
__________________
The descent of man ~ Nixon, Friedman, Reagan, Trump.
xoxoxoBruce is offline   Reply With Quote
Old 09-26-2010, 12:40 AM   #4
ZenGum
Doctor Wtf
 
Join Date: Oct 2007
Location: Badelaide, Baustralia
Posts: 12,861
Quote:
Originally Posted by xoxoxoBruce View Post
Their speculating it's a nation state. It's using several previously unknown holes in windows. It migrates to computers that don't connect to the web. It's not just Iran, India, Malaysia and eastern Europe too. It does no harm unless it finds specific industrial controls, like the unauthorized Siemens controls, Russia sold to Iran.

So maybe it was made and released by Siemens? You hack us, we hack you back?

Or are the machines about to take over for real?
__________________
Shut up and hug. MoreThanPretty, Nov 5, 2008.
Just because I'm nominally polite, does not make me a pussy. Sundae Girl.
ZenGum is offline   Reply With Quote
Old 09-26-2010, 12:59 AM   #5
xoxoxoBruce
The future is unwritten
 
Join Date: Oct 2002
Posts: 71,105
I'd bet on China.
__________________
The descent of man ~ Nixon, Friedman, Reagan, Trump.
xoxoxoBruce is offline   Reply With Quote
Old 09-26-2010, 01:10 AM   #6
Gravdigr
The Un-Tuckian
 
Join Date: Apr 2007
Location: South Central...KY that is
Posts: 39,517
Quote:
Originally Posted by ZenGum View Post
Or are the machines about to take over for real?
Didn't that happen at 2:14am on August 29, 1997?
__________________


These statements have not been evaluated by the FDA, EPA, FBI, DEA, CDC, or FDIC. These statements are not intended to diagnose, cause, treat, cure, or prevent any disease. If you feel you have been harmed/offended by, or, disagree with any of the above statements or images, please feel free to fuck right off.
Gravdigr is offline   Reply With Quote
Old 09-26-2010, 01:46 AM   #7
Flint
Snowflake
 
Join Date: Mar 2006
Location: Dystopia
Posts: 13,136
Very "Ghost in the Shell" . . . (btw, a 15 year-old film)
__________________
******************
There's a level of facility that everyone needs to accomplish, and from there
it's a matter of deciding for yourself how important ultra-facility is to your
expression. ... I found, like Joseph Campbell said, if you just follow whatever
gives you a little joy or excitement or awe, then you're on the right track.

. . . . . . . . . . . . . . . . . . . . . . . . . . Terry Bozzio
Flint is offline   Reply With Quote
Old 09-26-2010, 01:26 PM   #8
tw
Read? I only know how to write.
 
Join Date: Jan 2001
Posts: 11,933
Quote:
Originally Posted by xoxoxoBruce View Post
I'd bet on China.
Industry polls (professional estimations) put internet espionage and malware mostly from the US government (36%) and from the Chinese government (33% of the time).
tw is offline   Reply With Quote
Old 09-26-2010, 01:30 PM   #9
tw
Read? I only know how to write.
 
Join Date: Jan 2001
Posts: 11,933
Quote:
Originally Posted by ZenGum View Post
So maybe it was made and released by Siemens? You hack us, we hack you back?
IEEE Spectrum reported on the (suspected) complete compromise of the entire Greek telephone system. Hacking was that widespread and that serious a national security issue. The article did not even try to suggest who might have done it. List all the usual suspects.
tw is offline   Reply With Quote
Old 09-26-2010, 02:06 PM   #10
tw
Read? I only know how to write.
 
Join Date: Jan 2001
Posts: 11,933
From the NY Times of 25 Sept 2010:
Quote:
Iran Fights Malware Attacking Computers
Stuxnet, which computer experts say is a far cry from common computer malware that has affected the Internet for years. A worm is a self-replicating malware computer program. A virus is malware that infects its target by attaching itself to programs or documents.

Stuxnet, which was first publicly identified several months ago, is aimed solely at industrial equipment made by Siemens that controls oil pipelines, electric utilities, nuclear facilities and other large industrial sites. While it is not clear that Iran was the main target - the infection has also been reported in Indonesia, Pakistan, India and elsewhere - a disproportionate number of computers inside Iran appear to have been struck, according to reports by computer security monitors. ...

Based on what he knows of Stuxnet, Mr. Lewis said, the United States is "one of four or five places that could have done it - the Israelis, the British and the Americans are the prime suspects, then the French and Germans, and you can't rule out the Russians and the Chinese."
tw is offline   Reply With Quote
Old 09-26-2010, 04:53 PM   #11
Griff
still says videotape
 
Join Date: Feb 2001
Posts: 26,813
Quote:
Originally Posted by xoxoxoBruce View Post
I'd bet on China.
A quick glance at politics and the application of Occam's razor says US or Israel. If it really is a State.
__________________
If you would only recognize that life is hard, things would be so much easier for you.
- Louis D. Brandeis
Griff is offline   Reply With Quote
Old 09-26-2010, 08:16 PM   #12
xoxoxoBruce
The future is unwritten
 
Join Date: Oct 2002
Posts: 71,105
Israel was my first thought, but energy hungry China has a big stake in keeping the middle east from blowing up, and an increasing investment in Africa, Greece and around the Mediterranean. It's a crap shoot at this point.

The thing that got me was other countries found it easy to remove with commercially available anti-virus programs. Does the UN embargo on Iran include Norton?
__________________
The descent of man ~ Nixon, Friedman, Reagan, Trump.
xoxoxoBruce is offline   Reply With Quote
Old 09-27-2010, 02:25 AM   #13
sexobon
I love it when a plan comes together.
 
Join Date: Oct 2009
Posts: 9,793
Quote:
Originally Posted by tw View Post
From the NY Times of 25 Sept 2010:
Quote:
Stuxnet, which was first publicly identified several months ago, is aimed solely at industrial equipment made by Siemens that controls oil pipelines, electric utilities, nuclear facilities and other large industrial sites.
Quote:
Originally Posted by xoxoxoBruce View Post
The thing that got me was other countries found it easy to remove with commercially available anti-virus programs. Does the UN embargo on Iran include Norton?
A surgical strike of this nature can have reconnaissance value in that previously unknown facilities of interest may be revealed through monitoring of internal message traffic about the strike's impact. Disruption may simply be a cover for this activity, especially since it is readily recoverable.
sexobon is offline   Reply With Quote
Old 09-27-2010, 09:07 PM   #14
tw
Read? I only know how to write.
 
Join Date: Jan 2001
Posts: 11,933
Quote:
Originally Posted by sexobon View Post
A surgical strike of this nature can have reconnaissance value in that previously unknown facilities of interest may be revealed through monitoring of internal message traffic about the strike's impact.
Surgical? Are you a disciple of pathetic myths constantly promoted by Air Force Generals?

We have two choices. First, negotiation now made so much more effective since America has restored relations with Russia, Turkey, some Caspian Sea nations, and other 'much more at risk' nations. That also means we have intelligence and covert options due to cooperation both inside and surrounding Iran.

Second, or we could attack. Since the number of sites are hundreds, many in virtually bomb proof locations, and maybe half remain secret, well, what are you going to bomb? An attack means troops on the ground. There is no other military option. That means virtually all intelligence and covert options are lost. A failed attack means things are far worse AND that America has no more options. That means American integrity - one of our greatest assets in the region - is lost. There is no military option without ground troops. In poker, it is called "all in".

You have listened to Turkey's Gul or Russian foreign diplomats discussing this problem? Now that Obama has restored relations with Russia, then Russia even canceled their air defense sale to Iran. And is rumored to have restored intelligence exchanges with America.

More important is Iran's problem getting materials and machines necessary to make parts to tolerances required to enrich uranium. And other problems implied by the above malware rumors.

How did we discover Qom? American intelligence was routinely reading e-mail from their scientists. These made possible because countries actually at risk (Jordan, Syria, Turkey, Russia, etc) are even more concerned. Why are they not complaining that America are not doing enough? Because we have little idea how successful the US government has been. Because countries at risk are in agreement with what the Obama administration has been doing.

Israel is a wild card due to a government (Likud) that is so extremist. Israeli actions could only make things worse unless their actions are done with the cooperation of Iranian neighbors and without American cooperation. Even the Israelis know they must also put troops (special forces) on the ground if using the military option.

Anyone promoting an American military option is their own fool. Not to be confused with something completely different - what in poker is called a "bluff". But again, that is why the only viable solution is found in negotiation (and covert operations made possible only if doing negotiation).
tw is offline   Reply With Quote
Old 09-27-2010, 09:33 PM   #15
classicman
barely disguised asshole, keeper of all that is holy.
 
Join Date: Nov 2007
Posts: 23,401
Depends on if we have help with that strike ...

Aliens have deactivated British and US nuclear missiles
__________________
"like strapping a pillow on a bull in a china shop" Bullitt
classicman is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

All times are GMT -5. The time now is 02:40 PM.


Powered by: vBulletin Version 3.8.1
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.