Stuxnet's Earliest Known Version Discovered and Analyzed - Slashdot

Slashdot

Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

Stuxnet's Earliest Known Version Discovered and Analyzed 77

Posted by Unknown Lamer on Wednesday February 27, 2013 @11:34AM
from the no-u235-for-you dept.

An anonymous reader writes "Symantec researchers have discovered an older version of the infamous Stuxnet worm that caused the disruption at Iran's nuclear facility in Natanz: Stuxnet 0.5. According to a whitepaper released by the researchers at RSA Conference 2013, Stuxnet 0.5 has first been detected in the wild in 2007 when someone submitted it to the VirusTotal malware scanning service, but has been in development as early as November 2005. Unlike Stuxnet versions 1.x that disrupted the functioning of the uranium enrichment plant by making centrifuges spin too fast or too slow, this one was meant to do so by closing valves."

This discussion has been archived. No new comments can be posted.

Stuxnet's Earliest Known Version Discovered and Analyzed

Search 77 Comments Log In/Create an Account

Comments Filter:

State sponsored (Score:5, Insightful)

by schneidafunk (795759) writes: on Wednesday February 27, 2013 @11:45AM (#43025529)

Is there any doubt that this is government sanctioned? Who has the knowledge (or will) to write a program to disrupt centrifuges. Also this tidbit from the article: "Both the Flamer and Tilded platform code bases are different enough to suggest different developers were involved."

Share
twitter facebook linkedin
Re:State sponsored (Score:5, Insightful)

by schneidafunk (795759) writes: on Wednesday February 27, 2013 @12:01PM (#43025773)

From the white paper: "PLC device attack code
The code conducts an attack by closing valves in the six top rated cascades out of the possible 18 cascades. The states of two types of valves are modified:
Centrifuge valves – a set of three valves (feed, product, tails) that work in unison per centrifuge to control uranium hexafluoride (UF6) flow into each centrifugeStage valves – one per stage to control UF6 flow into each stage
Auxiliary valves – valves that control UF6 flow into or out of each stage (stage valve) or the cascade as a whole"

Keep in mind, this is working backwards by dissecting the virus. The programmers would have to know this information up front to create the virus. I do not see anyone but "governments or their agents" creating this virus. Another explanation is naive.

Parent Share
twitter facebook linkedin
Re:2005? (Score:3, Insightful)

by Anonymous Coward writes: on Wednesday February 27, 2013 @12:24PM (#43026093)

The only reason the private contractors were needed is because the private contractors lobbied for "small government" that got the govt IT employees laid off. (Nevermind that in-house govt IT ops always did their job at a reasonable cost, where over budget years late is considered a good turnout for a private contract job.)
Ever wonder how every self-described libertarian here seems to be a private contractor?

Parent Share
twitter facebook linkedin

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

629 commentsGoogle Throws Microsoft Under Bus, Then Won't Patch Android Flaw
484 commentsIEEE: New H-1B Bill Will "Help Destroy" US Tech Workforce
463 commentsWriter: How My Mom Got Hacked
463 commentsAsk Slashdot: When and How Did Europe Leapfrog the US For Internet Access?
422 commentsJustice Department: Default Encryption Has Created a 'Zone of Lawlessness'

"The algorithm to do that is extremely nasty. You might want to mug someone with it." -- M. Devine, Computer Science 340