Stuxnet

[Lord Dagonet]

Abro esse tópico para discutirmos o assunto, com base em um artigo bem completo.

"Computer security experts are often surprised at which stories get picked up by the mainstream media. Sometimes it makes no sense. Why this particular data breach, vulnerability, or worm and not others? Sometimes it's obvious. In the case of Stuxnet, there's a great story.

As the story goes, the Stuxnet worm was designed and released by a government--the U.S. and Israel are the most common suspects--specifically to attack the Bushehr nuclear power plant in Iran. How could anyone not report that? It combines computer attacks, nuclear power, spy agencies and a country that's a pariah to much of the world. The only problem with the story is that it's almost entirely speculation.

Here's what we do know: Stuxnet is an Internet worm that infects Windows computers. It primarily spreads via USB sticks, which allows it to get into computers and networks not normally connected to the Internet. Once inside a network, it uses a variety of mechanisms to propagate to other machines within that network and gain privilege once it has infected those machines. These mechanisms include both known and patched vulnerabilities, and four "zero-day exploits": vulnerabilities that were unknown and unpatched when the worm was released. (All the infection vulnerabilities have since been patched.)

Stuxnet doesn't actually do anything on those infected Windows computers, because they're not the real target. What Stuxnet looks for is a particular model of Programmable Logic Controller (PLC) made by Siemens (the press often refers to these as SCADA systems, which is technically incorrect). These are small embedded industrial control systems that run all sorts of automated processes: on factory floors, in chemical plants, in oil refineries, at pipelines--and, yes, in nuclear power plants. These PLCs are often controlled by computers, and Stuxnet looks for Siemens SIMATIC WinCC/Step 7 controller software."

RESTO DO ARTIGO - SCHNEIER ON SECURITY

[Guzpido Krush]

por enquanto eu não consigo discutir, só consigo dedilhar uma mão na outra fazendo MWAHUAHUA e pensando, "eu também avisei quanto aos problemas dessa plataforma". Nego vai lá e instala em usina nuclear? Em controle de avião? E quer ser feliz? Por mim, todos deviam sofrer as consequências e ser punidos pelos seus governos pela incompetência na elaboração da infraestrutura. Devia ser proibido instalar Windows nessas aplicações críticas, devido a uma questão técnica, mas devido a uma questão política e de lobby, é claro que não acontece dessa forma. Imagine tu marca uma cirurgia e o cirurgião diz que vai te operar com um bisturi "fácil de usar" só que as vezes dá uma travadinha -- mas é só reiniciar.