Page 5 - index
P. 5
Stuxnet
The Stuxnet malware was indicated to be the largest and most expensive malware development
in history. Stuxnet targeted systems using the Microsoft Windows operating system and
networks, in search of Siemens Step7 software. It then gained access to and infected the
network in search of computers with Siemens Step7 software and control of programmable logic
controls (PLCs). Once these devices were identified, Stuxnet introduced the infected rootkit onto
the Step7 software and PLCs, gained access to and altered codes to give unexpected
commands to PLCs, while returning standard feedback to the computer and its users.
Siemens systems around the world were the primary victims of the malware, with 22+
manufacturing sites affected, most notably Iran’s Nantaz nuclear facilities. It was reported that
nearly one-fifth of Iran’s nuclear centrifuges were destroyed by Stuxnet.
While it was not the first discovered targeted cyber warfare attack, Stuxnet was the first
discovered malware to spy on and destroy industrial systems and the first to deploy a PLC
rootkit. Because of Stuxnet, the industry was slapped with the harsh reality that cyber warfare
puts not only our networks and information at risk, but also the physical infrastructure it controls.
Retail Breaches – The Domino Affect
In December 2013, retail giant Target publicly disclosed that from November 27 through
December 15 (including Black Friday weekend) it had been the victim of a major data breach. In
the months to follow, other major retailors would come forward with news of similar system
breaches, including Neiman Marcus, Michaels, and Home Depot. A malware strain named
“BlackPOS,” was found on POS systems in relation to these major breaches. This particular
malicious malware sits on POS systems and taps data from cards once they are scanned
through a check out system. Hackers sell the credit card info on the black market to buyers who
are then able to access cash or steal identities. In the instance of the Target breach,
approximately 70 million customer records were stolen that included name, addresses, and
phone numbers of shoppers, as well as 40 million credit and debit card records.
Not only was this a major setback, both from an economic and reputational standpoint for these
retailers, but it also brought to light to the fact that all organizations across all industries are at
risk for a targeted attack. These targeted retail breaches further drove the message that industry
insiders having been preaching for years now: “It’s not a matter of if, but when you’ll be
breached” to convey the importance of having security measures that cover prevention,
detection, and response.
These aforementioned historical events signify that no organization is ever truly exempt from
falling victim to a potential hack. As this year’s National Cyber Security Awareness campaign
theme highlights, it is everyone’s shared responsibility to not only keep our own data safe, but to
help keep each other’s data safe, too. If we learn anything from the past, it’s that establishing a
5 Cyber Warnings E-Magazine – October 2014 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide