This page has been archived and commenting is disabled.
Security Expert Suggests Stuxnet Originated In Israel
More information is starting to emerge about the Stuxnet virus which we discussed extensively previously. Richard Falkenrath, a principal at Chertoff Group, talks to Bloomberg and does a good overview of the impact of Stuxnet, and just how substantial its destructive potential could be. Among his observations is that "it took the resources of a nation state to create this piece of malware." And considering that the ultimate target of Stuxnet infections is Iran, and specifically its Bushehr nuclear reactor, it is not all that surprising that according to Falkenrath the originating country is Israel. The only question is whether Iran also has access to comparable high sophisticated technology (and if so, whether the recent crash in the CFTC's server preventing the disclosure of today's Committment of Trader report has anything to do with it). The amusing bit, is that Iran's nuclear power plant actually does run Windows. Which makes one wonder why go to such great lengths instead of having someone merely remind the host computers that the local version of Win95 is and has always been pirated.
More in the clip below:
»
- 14011 reads
- Printer-friendly version
- Send to friend
- advertisements -
Obvious bitchez!
How about any1 using the word 'bitchez' getting an IP ban from now on ?
Been around here long? Good luck with that.
Are you going to kick TD off his own site (used term just a couple weeks ago)?
Can't the non-Bitchez people just scroll past our need to be adolescent for a moment?
Deirdra Bolton is hot Bitchez!
http://www.maxim.com/girls/44100/tvs-10-hottest-news-anchors.html?p=6
Wait, Rachel Maddow made that list? I'll be right back, dinner is coming back up.
"any1" is not a word in any language except teenager-text-speak.
"bitchez" is kind of a community joke now. We like the neighborhood just fine, mostly.
neighborhood comraderie, bitchez
junk me again, bitchez !
Your objection has been duly noted, and promptly ignored.
Lol, pull up your big girl panties and have a little fun now and then.
The little wall flower bitchez must be a hoot at party's.
"Ohhh Buffy!...another napkin please, this rude man is back and drooling on my Gucci's again."
Bitchez...LOL.
Dear fellow n00b.
Romans, bitchez!
/thanks for providing me with a legitimate opportunity for my first bitchez post, as I didn't want to appear to be just another band-waggoner
Not Applicable, bitchez!
Blocked, Bitchez!
I wish every Zerohedge post contained the word bitchez myself.
011000100110100101101110011000010111001001111001001000000110001001001001011101000110001101101000011001010111001100100001
binary bitchez!
· · · — — — · · ·
thank the gods it wasn't ebcdic
+1 lol
Cyberwarfare will alway be secret, no1 will admit they got infected while surfing porn in a Nuclear facility ;)
Upping the ante on porn surfing everywhere. Click on the wrong picture and all of a sudden your hot water tank explodes.
Or your smart-meter goes into hyper-drive.(Or maybe in reverse, that would be cool)
ping
That explains it.
skynet
Stuxnet now growing nano-antennae to report back to mothership! All your 10baseT are belong to us!
Uuuhhhh, this is Iran. RG-58, coax & LANtastic.
Ahh..the simple life. Endless nights of finding cable breaks, and looking for the end of the line to probe those faulty terminating resistors.
Simple, just pull the network connection to the outside. Surely a nuclear power stations network shouldn't be directly connected to a WAN/internet?
Doesn't pass the plausibility test to me.
I thought it was reported to have been uploaded through a flash drive
Well, if it's via USB sticks then that's even more crazy still. If you can get an object (a USB stick) inside the plant, why not send in explosives inside a cake or something instead.
Sounds like a lot of dumbness to me.
A USB stick is a little easier to hide then a few pounds of C-4 and easier to pass if you know what I mean. :)
Allowing operators to actually use flash drives on any LCN (local control network) is a huge no-no. You lock the operator console (the part that runs on Windoze) down to the point where they cant' actually do anything else but use the HMI to monitor the plant. The actual control software is not Windows based.
Allowing operators to actually use flash drives on any LCN (local control network) is a huge no-no. You lock the operator console (the part that runs on Windoze) down to the point where they cant' actually do anything else but use the HMI to monitor the plant. The actual control software is not Windows based.
I am a PLC [programmable logic controller] programmer for the automotive industry. I can tell you right now that you could cause havoc with processes and control, etc. but you could NEVER destroy a facility with a virus. There are too many safeties in place especially with something like a nuclear plant. When I mean safeties I mean HARDWIRED safeties that are not dependent on the PLC program or software.
Again … I only have automotive experience, but I would assume multiple redundancies. In our industry, our “Safety PLC” has 2 processors from 2 different manufacturers running different code, etc, etc. everything is “double” and if you try to bypass something it “knows” and will fault out.
You could get around all of this if something was physically installed at the plant – some kind of “bypass” that was hardwired in place by an “inside guy”. Not impossible ….. but it would have to be very, very clever. You could program the PLC to activate this hardwired device.
Besides …..allah [no cap] would stop you.
Off topic ….. but amazing how allah (or any god) never tells you to give all your money to a good cause, only how to kill. How many people have been killed in the name of “god”.
Thought that was just a theory for now.
Another question to ask is if it really was from a flash drive & there is no WAN access to the internet, then how have other businesses been infected? How did it spread?
Think bigger. If this really was a targeted attack by a state, there are a hell of a lot of ways to get to the target.
Where do you think all those computers and other hardware come from? And the software? Hint: it isn't manufactured in Iran. And if it's made somewhere else, then there are lots of opportunities for others to put their fingers on it.
Or if you prefer simpler solutions, just pay someone to carry in a flash drive.
Question: why is everyone so focused on Bushehr? Wouldn't the enrichment facility be a better target? Media attention being drawn to someone jangling something shiny in their faces again, I guess.
Maybe Bushehr is a diversion
That would be the ultimate irony, Iran getting their Nuclear Plant software written in Israel ;) and getting their Hardware from Germany (owned and controled by the Zionists)
Well,well,well: http://wikileaks.org/wiki/Serious_nuclear_accident_may_lay_behind_Irania...
Actually there are some people speculating about your question.
Fascinating. I wonder if the timelines are consistent.
[edit]
Apparently so:
Thanks for the pointer.
...just as crows are attracted to bright and shiny objects...
...or magpies collecting conspiracies...
fmb-
Not in the U.S., Canada, at least, and getting more strict/stringent by the minute. FERC/NERC still not having their act together, tho.
and there are layered systems (24 theme a'int happening).
- Ned
I think it came for the swine flu virus after one of President I'm a Nut Jobs animalistic orgies.
POST CARD FROM THE UN
http://williambanzai7.blogspot.com/2010/09/post-cards-from-un-2010.html
Who junked you? Thats funny !!
Stuxnet now shape-shifting into -- wait for it -- a Chertoff Group naked full-body scanner.
Chertoff and naked should never be used in the same sentence.
And now to shake that ugly thought, beer-thirty, here I come.
Added bonus: the image you see here
http://www.csmonitor.com/var/ezflow_site/storage/images/media/images/123...
from a Dutch airport. It has become the standard accompaniment to the L3 full body scanner in most airports now.
It is instructional on many levels but no more than on how to submit as a slave to all-seeing surveillance.
Now where have I seen that eye symbol before, so cleverly and subconsciously created in this instance by hands clasped over a simple generic stick figure?
Oh yeah...Now I remember....
http://www.whale.to/b/images/all_seeing_eye.jpg
I am Jacks total lack of surprise.
I also said so yesterday. And then the megaphonies went batshit on me.
so here...have at it again...let the junking commence!
PS: OK THESE FUCKIN CAPTCHA MATH QUIZES ARE GETTING STUPID!
alien-IQ did you know you dont even have to do the captcha quizes?
It won't post my replies until I do them. Maybe I'm missing the secret password?
(pickle?)
What bugs me is that the answer cannot exceed 2 digits--yet I had a negative 3 digit solution today! It ain't right . . . it's bad enough that I sometimes need the calculator already.
STUXNET PROVES RHIEMANN HYPOTHESIS
with one core tied behind its back, out of sheer boredom waiting for stupid @#$%^&* humans to tell it what it should do next.
Predicts and steals Nouriel Roubini's next supermodel girlfriend (before Roubini evens thinks it) as an encore! BRAVO!
Someone please explain this to me ...
"Siemens recommends ... disallowing the use of third-party USB sticks" - Stuxnet Wiki
As purported, this was an attack on an Iranian nuclear site, and, as purported, was dissemenated through a USB stick ...
WHY would they not have disabled the use of third-party USB sticks? It seems that at such a high-importance site that this consideration would have taken place - even at my workplace we cannot use flash drives.
Bueller?
Clearly a black op false flag inside job dohickey, like 911. The code was written in farsi on one of Art Cashins crumpled cocktail napkins and keyed in in Basic. Woop woop!
ping
It seems they're running Windows 95, too. Says a little about the attention to detail that went into the plant.
Does anyone know the prevailing wind direction from the plant???
Is there a short sale opportunity here we might have overlooked?
The safety program in place there is stellar I can assure you...this Iran dammit!...not some backwater third world theocracy...they have Russian ground to air missle batteries in place all aroun...ohhh...I see your point...ummm...scratch that.
Baghdad Bob would have had a better denial for us!
He's related to Pelosi ya know ;-)
via gibbs, kinda convoluted y'know. - Ned
Yeah must be tough trying to explain a different reality from what everyone else is experiencing.
It takes a special kind of liar...LOL.
At the hacker security convention. IBM passed around a bunch of USB sticks with worms on them. How embarassing. It's a wacky world that makes no sense isn't it.
hey, thanks for last night. i got off real good. plus ken block is H O T . actually one of my young golf homey i played with today, said his brother pitted for ken block with DC shoes.
s c o r e
Billionaire owes $5,000 to Colo. contractorNow who woulda thunk we'd see the words Bushehr and glitch in the same sentence this week? http://www.upi.com/News_Photos/Features/The-Nuclear-Issue-in-Iran/1581/2/
HOW STUXNET WORKS
http://williambanzai7.blogspot.com/2010/09/how-stuxnet-virus-works.html
LOL
Bill Banzai gets it...
...do you acually expect someone to click on that?
Nice.
I just saw Bernanke's Facebook page as well--first time I've had a long bout of out-loud laughter in weeks! That's some funny shit.
Sounds like an 'Upper Decker' in the master bathroom
http://www.youtube.com/watch?v=8JRVJdFFk9E
last time I saw that design, it was N'Orleans 9th ward. - Ned
Relax, STUXNETT is just a map to an Iranian geocache.
You find yourself in a large room with lots of twisty passages. There's a small bottle here.
Show me a modern DCS that doesn't use Windows as it's HMI. The underlying system isn't Microsoft, it's completely proprietary hardware and software by Siemens, Honeywell, Emerson, Yokogawa and the like.
How could Windows 95 even recognize a USB drive, let alone Autorun?
Besides, if you want to hose Windows 95, one command will do:
ren c:\windows\system\vmm32.vxd c:\windows\system\vmm32.wtf [enter]
If people can run nuclear power plants on Losedoze. I'm going to run with scissors. No forget that. I'm going to run with scissors, play with fire and experiment with explosives.
http://www.youtube.com/watch?v=M_yWyBjDEaU
http://www.youtube.com/watch?v=ohvY7d4RrxY&feature=channel
"Ladies? use to call me the quicker picker upper."
your not very romantic. crush over† why are you always up keyboarding, at midnight?
it's funny the plant uses Windows considering that Israel is one of the three main R&D hubs for Microsoft.
great observation. That would explain why Microsoft has been reluctant to patch the holes
stop it, you're too kind
remember when there was only one set of foot prints?
yes
that is when I junked you
Welcome asshat...That was funny.
Repent or jesus will junk you? LOL
And that's why microsoft accidently become a monopoly even though the government was so against it becoming a monopoly and fought it so hard but it was just too big and strong and they didn't have enough resources. Poor guys. But they'll fix it. Now Apple will accidently become a monopoly and everything will be right with the universe again.
Bill holds alot of Monsanto stock. Another control group
+10
Don't forget about all the money they are giving away, because their Foundation is so charitable. Sure would like to track all their donations. Norman Dodd investigated these charitable trusts in 1953 (Reese Committee).
You'll no doubt learn to love the smell of your own clutch slipping in the morning.
Is the plant up-wind from Tehran?
Does anybody have a guess when 'zero hour' is for this malware?
Have a little accident breakout...a little internal chaos...everybodies distracted...then WHAM-O!!! In come the missles/jets.
Oil to the moon.
Or is the plant in Tehran a wind-up?
Wait, what?
Exactly! That's the crux, er, stux of Operation Broken Wind.
Iran needs to watch the series premiere of Battlestar Galactica to gain an appreciation of how networked computers can be your undoing. Plus, they'd find the 6's totally hot.
that was funny...:)
Not allowed on Tehran's TV Guide:
10:00 - Suddenly Sanctions!
11:00 - Wheel of Misfortune.
12:00 - Mad at Everyone
13:00 - Ahmed's funniest executions
wonderful just wonderful.
We know from the previous post, that this virus is now prevalent in India and Indonesia. We also know how well these developing countries are doing with advanced technologies.
http://www.informs.org/About-INFORMS/News-Room/Press-Releases/Air-Safety...
and now we introduce malware into their fragile technologies.
Now we know that malware will most likely cause collateral damage. In India there may be another Bhopal event. At major airports, they have underground fuel pumping capabilities so that fuel trucks are no longer required to pony up to the planes.
Possibly, the BP platform explosion could be due to a faulty controller on the blowout preventer.
I can see where the virus is used to target the reactor but the medicine is worse than the illness.
"developing countries" + "advanced technologies" = "oxymoron"
you are right.
Siemens gives them operating manuals written in German and tells them to use Babel Fish to translate.
No, they were originally written in German, but translated into English by their software engineering group in Calcutta.
I'm pretty sure there's gonna be people spontaneously combusting as a direct result of STUXNET.
At least that's what they'll want you to believe (when people start spontaneously combusting). </sarcasm>
What's the point of having a virus when everybody knows about it?
Nuclear powerplants have a closed network system.
Drop a few flash drives in the parking lot or the local donut shop near the plant and one of the drives will make its way into the isloted system via an employee, then open a back door (Trojan Horse trick). Or, the flash drive will have all the code necessary to carry out the planned activity. Isolated system + flash drive = compromised system.
Compromised bitchez.
...just make sure the drives are labeled property of Pamela Anderson ...they have probably heard of her by now....
Flash drives? Parking lot? Isn't this being a tad presumptuous?
Burrs under camel blankets, maybe.
bustyteens.exe?
Months ago 60 Minutes reported the US was already hit with its electronic Pearl Harbor in 2007 when geeks breached the security systems at NASA, State Deparment and Pentygone downloading massive amounts of data. And, it looks like the geeks used the flash drive trick.
http://www.youtube.com/watch?v=FZUzB8uC9bs
Interesting that nobody asked how the USB drives got into a secure facility and were left lying around. Or who?
There's some real stupid misinformation around. The PLC control systems do NOT run windows! Never have, never will. They are embedded real-time modular systems.
Sometimes control panels, alarms, and interactive touch screens are connected to them.
Where Windows comes into play is for programming them (using ladder logic) and viewing state for debugging purposes.
If you really care about security, you would have them and the PC's for programming them on a closed network with physical security. And you'd have to read all the source and all the upgrades, and compare the binaries, and then you still wouldn't be 100% safe.
Maybe so, but we're having too much fun at other's expense!
Richard.. RICHARD!
You seem to know exactly what this worm is, how it was created, and how it was administered. Down to the stolen certs.. You rattled that off pretty quick didn't you.
@ 2:26 - You're asked if the U.S. did it?
@ 2:08ish - You say it's theoretically possible that the U.S. could do it. But more likely that Israel did it..
Then more BS with your insider knowledge.
@ :33 It's reiterated that you think Israel did it.
@ :31 you say possibly but more Likely the U.S. Did it!!!
Do I have that right, Richard? Principal of the Chertoff Group.
Chertoff.. humm,.. where have I heard that name?
Richard.. resign you stupid fuck.. and keep you fucking mouth shut..
You do say it's extremely difficult to figure out who did it.
I'll give you that. Even so.. Not real hard to read between
the lines there..
Isn't the chertoff group part of that whole war department that turned into department of denfense that couldn't defend anything that needed a department of homeland security to defend stuff because department of war within your borders sounds bad.
NO!!! Now move along.
chamberlin...chamberlin....chamberlin....chamberlin...chamberlin....chamberlin...chamberlin...chamberlin...chamberlin...
from the chamberlin news desk in aspen Colorado.
3:44pm: ASPEN — Is it $75 or $7,200 for admission to a campaign stump for three Colorado Republicans that Karl Rove, former adviser to the Bush administration, will headline Friday at Aspen's Paepcke Auditorium?...
Read >
Fat-cat dinner or Aspen fundraiser?
Well, they should have learned the lesson well.
No more USB burhkas allowed into the facilities.
Sigh.
First off, your average 14-year old could design better software than a "nation state."
Second, short of somebody "bragging," there's no way one can determine the origin of one of these things as it can be introduced anywhere you like.
Finally, if Stuxnet has any purpose at all, it's to take everyone's attention off of the other two (or seventeen, for all I know) real "viruses."
Just because a Nation State paid for it doesn't mean they actually wrote. Probably some RBN guys who in turn sub'd it out to the aforementioned 14-year olds.
But, I've seen some interesting IT stuff come out of Israel.
+1 Software is the easy part. Getting it on site _should be_ the hard part.
Personally, we are overlooking a quite profitable opportunity with this Stuxnet thingie...it would be truly God's gift to those inclined toward short selling.
I could care less about that nuke facility...how do we get it into Amazon???
Worm. Smurm. Let's see some results, such as Bushehr a smoldering ruin.
CNBC covered it today, except the part about Iran. They focused on how it's a threat, and talked about it being used against us (the context of it).
It's always funny seeing dumbasses on CNBC filter a story until it's worthless.
Makes sense it's Israel. Makes me wonder if they had them pre-installed on the usb drives at the factory. Not sure if they make them there, but they do have an Intel facility.
Hell it's probably made in China, so, if true, you can bet they made a couple of copies, and are using the equivalent of our entire scientific force to upgrade it. I wonder why.
I see Stratfor has a article on Stuxnet today after zerohedge had it out for a day.
Bullshit.
Starwars II
Not Real
Scare the little fuckers into submission.
Even let them surrrender to the Frenchies so they can save face.
Put all thiermomey into Euros'
Live in the Banuielles.
Watch Ren and Stimpy all day.
Fuckin'-A. My SUV runs Great on Iranian Oil!
Hah! Stupide Americain.
This bullshit story has gotten way too much press for it to be true.
For those interested in a tech analysis by Symantec:
http://www.symantec.com/connect/blogs/exploring-stuxnet-s-plc-infection-...
This episode confirms to me (again) that states and governments although claiming to represent the population have no actual respect for us, our time or or our private property. Such that they are quite willing to destroy thousands if not millions of productive man hours to satisfy their own ends. If this was the act of some Norweigian teenager, they would be making criminal claims against him, but because it is a sovereign state...we will have empty statements and diplomatic small talk. This is why the world is so fucked. One rule for the individual another rule for those that claim they represent a group of individuals...at what point on the continuum between one and many does the rule change?
Terrorist Israel moving in.
Terrorist Israel moving in.
http://greatis.com/security/stuxnet_remover.html
Wait, the Zionist lie factories are now shurning unbeatable malware?
Oh my G$d! Those Wunderkinds in Herzilya are awesomosity incarnate!
always knew windows would have some role in completely destroying the planet..
Actually this has happened before
Why are the Iranians talking about it now?
I am of the opinion that killing "jews" is self defense, and that Hitler was right about everything.
Let's get this party started and go after the women the way they have gone after ours.
What an asshat.
You do realize they were trying to exterminate more than just Jews don't you?
It's quite likely, considering your level of intelligence, you would have been done as well...as a half wit...you would have had a single triangle sewn on your rags instead of two. You would have received a brand new tattoo just like any other Russian, Slav, Gypsy, Pole etc.
So, seeing as how "Hitler was right about everything"...tell us what other ethnic groups and cultures you hate.
In the evening ceremony chanel bags,chanel handbags sale as the first high-level chanel designer handbags custom Chinese star chanel bags prices uk XuQing alone in Paris – 2010 Shanghai chanel bags online uk,chanel bags uk online shopping early series dress coach outlet as ceremony. coach outlet store is Karl Lagrange coach outlet online the anfield fantasy coach outlet 2010 is 30-40 in Shanghai outlet 2010 coach handbags,coach handbags oulet China’s amorous feelings chanel 2.55 handbags,chanel handbags black different dress.