Slashdot Mirror

← Back to Stories (view on slashdot.org)

Stuxnet Was Designed To Subtly Interfere With Uranium Enrichment

Posted by Soulskill on from the well-thank-god-it-didn't-infect-my-pc dept.

ceswiedler writes "Wired is reporting that the Stuxnet worm was apparently designed to subtly interfere with uranium enrichment by periodically speeding or slowing specific frequency converter drives spinning between 807Hz and 1210Hz. The goal was not to cause a major malfunction (which would be quickly noticed), but rather to degrade the quality of the enriched uranium to the point where much of it wouldn't be useful in atomic weapons. Statistics from 2009 show that the number of enriched centrifuges operational in Iran mysteriously declined from about 4,700 to about 3,900 at around the time the worm was spreading in Iran."

7 of 334 comments (clear)

  1. The problem with computer sabotage... by Anonymous Coward · · Score: 5, Insightful

    ..is that you leave one hell of a forensic trail, and so lose the inevitable propaganda war that follows your activities....

    Having said that, I still welcome our variable but rapidly spinning overlords...

    1. Re:The problem with computer sabotage... by Anonymous Coward · · Score: 5, Insightful

      "...3) Why would they care about the public finding out? They were very careful to make sure it wasn't found for as long as possible, but once the Iranians know about it why would they care who else knows about it?..."

      Because international affairs are NOT like a Hollywood action film, where the hero blows the villain up in the last 15 minutes of action, and then rides off happily into the sunset with the girl. In real life actions have results. Look at the state the US got into on the international scene when all the stories about deception and torture in Iraq started coming out. Don't you think that the Iranians will present this as an act of war, and use it in every diplomatic conference for the next 20 years?

  2. Re:Resources, will, and motive by Chrisq · · Score: 5, Insightful

    There are only two nations with the resources, will, and motive to attack Iran's nuclear ambitions in this way: America and Israel.

    It figures that hegemony would lead either state to such an antagonistic stance.

    While I agree that they are teh most likely candidates, I think Russia and China would be quite capable of doing this too if they turned their mind to it. Probably the UK, France, Gremany and maybe India. All have both nuclear and computer technology

  3. Re:Resources, will, and motive by dpilot · · Score: 5, Insightful

    It's equally likely neither Russia nor China would be very happy to see a nuclear Iran, but not want to be visibly seen discouraging them on the international stage. Stuxnet, lets either of them slow Iran's nuclear program, test a new concept of warfare, and leave the US and Israel holding the bad as "most likely." For them it's a win-win-win. Beyond that, intelligence orgainizations in the West now have a small taste of what someone else can do. It's going to keep the West in knots for a few years, hardening against "the last threat," while they've got the next threat now, and are working on the one beyond that.

    --
    The living have better things to do than to continue hating the dead.
  4. Re:Resources, will, and motive by kestasjk · · Score: 5, Insightful

    I would not rule out Russia or China. Both have no interest in a strong Iran but every interest in an Iran that appears strong, since this ties and diverts US and Israeli attention and resources. It also sets a "benchmark" of aggression; as long as esp. China is less of a threat that Iran it can get away with quite a lot, barely noticed. A perceived Iranian nuclear threat can then also serve as justification for building missile defense systems and implementing other military measures that would previously have set off tensions with the Western nuclear powers.

    A simple case of cui bono?.

    Ugh.. This assumes that

    • Intelligence agencies will ignore other superpowers because they are distracted by Iran,
    • That continuing to enrich uranium is somehow more aggressive than ships sunk by North Korea, hostages taken by Somalian pirates, economic wars by China over a prisoner taken by Japan from a disputed island, etc, etc, etc
    • That Russia or China are smart enough to set this intricate double-trap just so that they can raise the "benchmark of aggression" but that other powers aren't smart enough to just continue to monitor other powers as always,
    • That China and Russia are secretly using Iran as a reason to build controversial missile defense systems when until recently that's exactly what the US was going do openly,
    • And that by launching this attack they are somehow keeping Iran weak while it still looks strong, when Iran's enrichment facilities are the subject of such intense scrutiny that when the attack occurred the "weakening" of Iran was apparent long before anyone in the public even knew of the attack

    I am just at a loss.. It really is like each response after the next is competing to think of a more convoluted, absurd way that someone you don't suspect could be involved in it.
    I fully expect to scroll down and see some justification for why it's internal industrial sabotage of one Siemens subdivision versus another, or Iran launching it against themselves to get international sympathy.

    --
    // MD_Update(&m,buf,j);
  5. Re:I don't know whats more worrying... by hairyfeet · · Score: 4, Insightful

    You don't seem to be getting the point dude. i don't care if the things were running Win9X the point is there is supposed to be an AIRGAP which the Iranians didn't bother with. It could have just as easily been an old Linux that hadn't been patched in forever (because the levels of paperwork to approve patches on those kinds of machines I'm sure is immense) or an old System 9 Mac, it don't matter because again it is supposed to be AIRGAPPED.

    An airgap means that there is NO net access and ANY device that is supposed to be brought from the unsafe side to the safe side needs to be treated as hostile and go through several levels of screening if allowed at all. Now from what I understand these machines have online activation (dumb) and have default passwords that can NOT be changed (really dumb) and then on top of that the Iranians didn't bother to securely lock down this attack vector nor get rid of even basic weaknesses like USB ports (super dumb) so trying to blame this clusterfuck of errors on ANY OS when the security team wasn't doing their job is just a waste of breath.

    Hell you could put an unpatched XP RTM as the controller and not have a SINGLE problem if proper airgap procedures are in place. But saying "If they only used X!" with whatever OS, be it real time or off the shelf, ignores the fact this was a highly targeted attack. If they would have used a RTOS I'm sure there would have been attack code written for it because the Iranians simply weren't following good security practices.

    --
    ACs don't waste your time replying, your posts are never seen by me.
  6. Re:Every country, and a lot of corps could do this by mlts · · Score: 4, Insightful

    The key here is knowledge. The knowledge to write Stuxnet is extremely hard to get (the holes in operating systems, the ability to jump from Windows to SCADA systems, knowing what speed the uranium was spinning), but this may not be impossible for someone who has a lot of connections, perhaps someone whose family has nuclear process engineers.

    There are a lot of people and organizations who don't like either Iran or Israel, and who would happily eat popcorn as both countries went to war with each other. It could be a guy in someone's basement who gets amusement from it the same way someone gets amusement from cracking root and rm-ing / on a university system.