Sunday, September 26, 2010

Iran confirms massive infection of Stuxnet industrial systems

On September 25, 2010 05: 10 PM ETComputerworld - officials in Iran have confirmed that Worm infected Stuxnet at least 30,000 PCs with Windows in the country, several Iranian news services reported Saturday.

Experts from the Organization of Iran's Atomic Energy seems to also gathered this week to discuss how to remove malware.

Stuxnet, considered by many security researchers as the most sophisticated malware ever, first discovered in June by VirusBlokAda, a company based in Belarus. A little-known security month later Microsoft recognized that white systems industrial control on a large scale in manufacturing and utilities companies managed PC with Windows worm.

These control systems, SCADA, called "supervisory control and data acquisition," everything operate you from plants energy and machinery factory oil pipelines and military installations.

According to the researchers in U.s. anti-virus software vendor, Symantec, Iran was more affected by the Stuxnet.Casi 60% of all computers infected in the oldest known infection were in that country.

Since then, the experts have accumulated evidence Stuxnet has been attacking SCADA systems from less than January 2010. Meanwhile, others have speculated that Stuxnet was created by a team sponsored by the State of programmers and designed to cripple Iran Bushehr nuclear reactor.

The reactor, located in the South-West of Iran near the Persian Gulf, has been focus of tension between Iran and the West, including the United States, which considered that spent fuel reactor could be be reprocessed in plutonium of high quality and used to build one or more nuclear weapons.

Based on Tehran Mehr News Agency, Mahmoud Alyaie, an official with the industries of Iran and the Ministry of mines, it said that 30,000 IP addresses in the country had been infected with Stuxnet.varios computers can access Internet from a single IP address, so the total number of infected computers for Windows can be significantly higher.

A working group of experts from various ministries of the Iranian Government has been established to deal with infection Stuxnet, said Alyaie.Otras sources quoted by Mehr stated that Iran has the ability to design the anti-virus tools to detect and destroy the worm.

Also Saturday, Associated Press (AP) news service said that Iran's nuclear energy agency experts gathered last Tuesday to plan how to remove Stuxnet from infected computers.citing the Agency ISNA, another organization based in Tehran, newsgroup access point not said victimizadas plants or facilities had been appointed.

Speculation about the likely fate of Stuxnet has focused on the Bushehr reactor.Saturday, the Iranian Atomic Energy Organization website includes a link to a long history of Mehr in Stuxnet.

This story stated that Government officials said that "serious damage caused damage and disability" had been informed officials.

Although it is still not operational in Bushehr, workers began to load fuel in the reactor last month.

Stuxnet, called "innovative" by an analyst who threw aside your code, use multiple vulnerabilities unpatched or "zero-day Windows, depended on stolen digital to disguise malware certificates, hid their code using a rootkit and reprogrammed PLC (programmable logic control) software to give new instructions for the machinery that software managed.

Microsoft has patched two of the four zero-day vulnerabilities exploited by Stuxnet and has promised to fix the remaining two flaws at some point.

Gregg Keizer covers Microsoft issues security, Apple, Web browsers and general technology, breaking news for Computerworld.siga Gregg on Twitter at Twitter @ gkeizer or subscribe to the RSS feed of Gregg Keizer RSS.your e-mail address is gkeizer@computerworld.com.

Read more about safety in the Centre of Computerworld security topics.

Advancing Knowledge Sharing with Google: The LSNC StoryIn the modern working environment, knowledge sharing has become paramount to organizational success, given the geographical dispersion, mobility and the overload of information. during this session, the legal services of California from the North (LSNC) will discuss its recent transformation exchange of information. with employees in 14 offices, a third California services and have access to information through one million documents, the challenge was desalentador.Para solve this, exploited LSNC experience Google Enterprise Search and cloud computing and deployed a system of knowledge content.Cost-Effective Virtualization Security Security virtualization trend micro ™ solutions deliver advanced security software to protect operating systems, applications and data on servers in the cloud to help ensure compliance, while allowing highest server consolidation ratios and maximize the performance and flexibility operativa.Con Trend Micro programs installed on your physical servers and virtual machines and virtual, your IT infrastructure is complete and integrated protection.The Laptop Dilemma: How to Maximize Productivity and Lower the Burden on IT New era of mobile computing creates opportunities for remote productivity while the next-generation standard technologies industry vs. data backup and administration. read more about this white paper.

No comments:

Post a Comment