Stuxnet and You!

Hello Bloggers!t

  Welcome to Danger Boy's Defcon blog! In my blog I will discuss curren Tech news and threats in the computer world that can impact our nation and possibly even you! I believe that people need to stay informed in current technology trends and threats that wouldn't normally hear in the mainstream news.

  Today I will be discussing a computer worm called Stuxnet and its possible implications since it has been discovered. First of all you should know what a computer worm is as it is quite different than a computer virus, Trojan, malware and that infamous adware many have more than likely seen at one point in time on your computer. This is

explained below in the "Terms You Should Know" section of my blog so that you can understand the jargon in my post.

Terms You should know:

  A computer worm is a self-replicating malware computer program, which uses a computer network to send copies of itself to other nodes (computers on the network) and it may do so without any user intervention. This is due to security shortcomings on the target computer. Unlike a computer virus, it does not need to attach itself to an existing program. Worms almost always cause at least some harm to the network, even if only by consuming bandwidth, whereas viruses almost always corrupt or modify files on a targeted computer.

  A programmable logic controller (PLC) or programmable controller is a digital computer used for automation of electromechanical processes, such as control of machinery on factory assembly lines, amusement rides, or light fixtures. PLCs are used in many industries and machines. Unlike general-purpose computers, the PLC is designed for multiple inputs and output arrangements, extended temperature ranges, immunity to electrical noise, and resistance to vibration and impact. Programs to control machine operation are typically stored in battery-backed or non-volatile memory. A PLC is an example of a hard real time system since output results must be produced in response to input conditions within a bounded time, otherwise unintended operation will result.

  Stuxnet is a computer worm discovered in July 2010. It targets Siemens industrial software and equipment running on Microsoft Windows.While it is not the first time that crackers have targeted industrial systems, it is the first discovered malware that spies on and subverts industrial systems, and the first to include a programmable logic controller (PLC) exploit.

  What does all this mean? This is the first significant exploitation focused towards industrial systems. PLC's in today’s world control most major systems in the United States and other countries. In other words if someone wanted to use this exploit in a negative manner they could destroy or damage water treatment facilities, open cells in a prison, damage power plants and if your sprinkler system for your lawn operates on a PLC even turn on the water and keep it running while you’re at work.

  Fortunately this was discovered and investigated by our good friends at Symantec which lead to quite an interesting story. I encourage you all to read the story at the following link which I found quite insightful on www.wired.com: 

http://www.wired.com/threatlevel/2011/07/how-digital-detectives-deciphered-stuxnet/all/1

Feel free to comment!! I'll see you on my Blog next week!