http://www.sabresjunkie.com/forum/

Rick-Rolling Iranian nuclear facilities with AC/DC
http://www.sabresjunkie.com/forum/viewtopic.php?f=12&t=7220		 Page 1 of 1
Author:  Crosscheck [ Wed Jul 25, 2012 11:10 am ]
Post subject:  Rick-Rolling Iranian nuclear facilities with AC/DC
For some reason I found this newest cyber-weapon hilarious

http://politics.slashdot.org/story/12/0 ... -with-acdc

Quote:
This time, the unverified e-mail claims, a new Metasploit-based malware owns Iranian VPNs, causes fault in the nuclear plants' Siemens-based industrial control systems, and randomly starts to play AC/DC's 'Thunderstruck' aloud via the infected computers' speakers.
Author:  NYIntensity [ Wed Jul 25, 2012 1:06 pm ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
I have yet to understand why Siemens systems have any connectivity to live networks, and why controls aren't followed for ensuring that portable media isn't scanned/vetted before being connected to the infrastructure network.

Shit's scary.
Author:  Crosscheck [ Thu Jul 26, 2012 11:48 am ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
They're not connected to outside networks.
When stuxnet got in it was widely reported it must have been brought in my an employee or contractor.

Good ole secret agent type stuff :)
Author:  NYIntensity [ Thu Jul 26, 2012 12:20 pm ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
Crosscheck wrote:
They're not connected to outside networks.
When stuxnet got in it was widely reported it must have been brought in my an employee or contractor.

Good ole secret agent type stuff :)


No connectivity to that system should be provided prior to some sort of media scan. I realize that then you have to attack the scanner before being able to inject naughty bits into the system, but any added level of hardening to the system would be welcome, I would bet.
Author:  Crosscheck [ Thu Jul 26, 2012 12:24 pm ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
you can only scan incoming media if you're aware of it, I assume they weren't...and in the case of stuxnet, I doubt it would have been detected since it was something entirely new at the time of infection.

Hey, I'm just glad we're on the giving end and not the receiving end of these things.
Author:  NYIntensity [ Thu Jul 26, 2012 1:48 pm ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
Crosscheck wrote:
Hey, I'm just glad we're on the giving end and not the receiving end of these things.


I feel like it's only a matter of time...
Author:  Crosscheck [ Thu Jul 26, 2012 3:29 pm ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
NYIntensity wrote:
Crosscheck wrote:
Hey, I'm just glad we're on the giving end and not the receiving end of these things.


I feel like it's only a matter of time...

I'm sure the Chinese are on it...I think we've got the smarter guys though.
Odd future we have...wars will be won with brain power, not firepower.
Author:  YankeeInRaleigh [ Fri Jul 27, 2012 10:02 am ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
Crosscheck wrote:
I'm sure the Chinese are on it...I think we've got the smarter guys though.



Not that i'm at all familiar with the world of malicious software, but in terms of my vocation i'd have to generally agree with this. And, not across the board of course, but i've definitely noticed a trend of a lack of creativity and imagination on the part of my chinese counterparts. They are EXCELLENT scientists when they're working with a protocol, but improvisation, innovation, vision...not their strong suit, and it makes sense, because from what I can tell they also do not value those traits as being important.
Author:  NYIntensity [ Fri Jul 27, 2012 10:05 am ]
Post subject:  Re: Rick-Rolling Iranian nuclear facilities with AC/DC
Let's just not piss off the Koreans to the point that they divert time from playing Starcraft.
Page 1 of 1 All times are UTC - 5 hours [ DST ]
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/