.

Stuxnet: Cyber Warfare or not?

<<

caissyd

User avatar

Hero Member
Hero Member

Posts: 894

Joined: Thu Dec 31, 2009 11:20 am

Location: Ottawa, Canada

Post Wed Oct 06, 2010 7:25 am

Stuxnet: Cyber Warfare or not?

Here is an interesting article about Stuxnet, the worm who has, among other targets, infected Iran's nuclear facilities:

It's hard to think of a story in the last few years that has generated more hype, conjecture, posturing, hyperbole and misdirection than Stuxnet, with the possible exception of the Aurora attacks. The commentary and hype around Stuxnet has shifted and morphed over the last few months, and now it seems to have coalesced around the idea that the malware was the work of Israeli intelligence and targeted specifically at Iran's nuclear program. But this line of thinking fits together all too easily and has a number of inherent flaws.


http://threatpost.com/en_us/blogs/rethinking-stuxnet-100410

A very good article indeed.
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
(aka H1t.M0nk3y)
<<

dante

User avatar

Jr. Member
Jr. Member

Posts: 58

Joined: Wed Jul 21, 2010 10:17 pm

Post Wed Oct 06, 2010 9:22 am

Re: Stuxnet: Cyber Warfare or not?

Interesting read.. I might be wrong but media is entirely focusing on the theory that supports Iran vs Israel... Infact more machines in India and Indonesia have been affected... Why not Pakistan vs India? Is pakistan not capable of it? No.. Buying vulnerabilities and exploits has been going on for several years in the underground circle..
Check out this
http://blogs.forbes.com/firewall/2010/0 ... satellite/

why it has to be even between countries? Why not between companies? Why are we speculating when we do not have enough facts? What we are trying to do is essentially taking a theory and trying to fit every known fact into the theory...

With four zero day vulnerabilities and usage of stolen certificates, I think the industry and media has never seen the likes of it before and responding in a way that is not completely rational ...

Here is a nice take...
http://blogs.forbes.com/firewall/2010/1 ... elligence/
Last edited by dante on Wed Oct 06, 2010 9:57 am, edited 1 time in total.
<<

caissyd

User avatar

Hero Member
Hero Member

Posts: 894

Joined: Thu Dec 31, 2009 11:20 am

Location: Ottawa, Canada

Post Wed Oct 06, 2010 12:14 pm

Re: Stuxnet: Cyber Warfare or not?

Thanks dante for the links.

When subject matter experts mix authoritative research in their realm of expertise (malware analysis) with unsubstantiated speculation outside their expertise (intelligence analysis), and when the issue is as arcane as so-called “weaponized malware”, bad things can happen and innocent people suffer.

I couldn't agree more with this quote.

To me, this is like the security in the airplanes. Yes, security was too loose in 2001. But since then, security has been tighten and it is fine now. Why are they introducing their new scanners that can see through clothes? This to me is lobbying and propaganda...
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
(aka H1t.M0nk3y)

Return to Cyber Warfare

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software