The Stuxnet worm is one of the most sophisticated bits of digital malware security researchers have come across in a long time. Now, those researchers want to know where it came from. Was Stuxnet the product of a den of hackers working on their own accord, or did a national government somewhere in the world have a hand in its creation? “Given the sophistication and organization behind it, we highly suspect it has nation-state involvement rather than being a tool for competitive intelligence,” said Kaspersky Lab’s Roel Schouwenberg.
For a long time, SCADA admins and developers pretended to live in a parallel universe and had a luxury to be delusional about "air gaps" between control system and SCADA, and to practice "security by obscurity". Not anymore. Stuxnet was a wake up call for the industrial automation industry - it's time to look around and start leveraging the experience that humankind has accumulated fighting security threats in the last decades. The following article based on the excellent Stuxnet analysis paper from Symantec discusses SCADA and web SCADA security:
Loading ...
Stuxnet: Dissecting the Worm
Posted by: Richard Adhikari August 16, 2010 06:00 AMThe Stuxnet worm is one of the most sophisticated bits of digital malware security researchers have come across in a long time. Now, those researchers want to know where it came from. Was Stuxnet the product of a den of hackers working on their own accord, or did a national government somewhere in the world have a hand in its creation? “Given the sophistication and organization behind it, we highly suspect it has nation-state involvement rather than being a tool for competitive intelligence,” said Kaspersky Lab’s Roel Schouwenberg.
http://www.controlsystemworks.com/blogengine/post/Post-Stuxnet-industrial-automation-systems.aspx