Stuxnet Authors Made Key Errors

Trailrunner7 writes "There is a growing sentiment among security researchers that the programmers behind the Stuxnet attack may not have been the super-elite cadre of developers that they've been mythologized to be in the media. In fact, some experts say that Stuxnet could well have been far more effective and difficult to detect had the attackers not made a few elementary mistakes."

Re:Does anyone here think they could do all of tha

[nonguru]

The comments within the article were more informative than the article itself. A number of commentators pointed out the context in which the Stuxnet developers were working and presumed tradeoffs in complexity behind covering their tracks versus achieving their objective. (Which by most accounts appears to have been successful at covering their tracks long enough to permanently damage the uranium centrifuges. Sounds like a solid achievement to me and not whatif conjecture on how good it could have been.) As usual the self-appointed /. experts assume that their "hive" hindsight knowledge could conquer the day. More likely you'd just flame one another over irrelevant technical details, and boast whose toolkit was bigger and more colourful.

Re:Does anyone here think they could do all of tha

[Will.Woodhull]

I think it also useful to point out that

1. In this kind of one-shot job, the code does not have to be good. It only has to be good enough. It would seem that stuxnet was good enough.
2. There is a certain elegance in not getting any fancier than what will do the job. If the writers of stuxnet had followed the ancient advice of "know your enemy", which apparently they did, they would have known what level of obfuscation was needed, and may have purposefully chosen to code stuxnet to that level.

It will be interesting to see what other malware is found in Iran. For it seems very unlikely that stuxnet was the only arrow in the quiver. It seems much more likely that it is just the first of several products to be discovered.