Slashdot Mirror

← Back to Stories (view on slashdot.org)

In an Age of Cyber War, Where Are the Cyber Weapons?

Posted by Soulskill on from the left-them-in-my-other-cyber-pants dept.

chicksdaddy writes "MIT Tech Review has an interesting piece that asks an obvious, but intriguing question: if we're living in an age of cyber warfare, where are all the cyber weapons? Like the dawn of the nuclear age that started with the bombs over Hiroshima and Nagasaki, the use of the Stuxnet worm reportedly launched a global cyber arms race involving everyone from Syria to Iran and North Korea. But almost four years after it was first publicly identified, Stuxnet is an anomaly: the first and only cyber weapon known to have been deployed. Experts in securing critical infrastructure including industrial control systems are wondering why. If Stuxnet was the world's cyber 'Little Boy,' where is the 'Fat Man'? Speaking at the recent S4 Conference, Ralph Langner, perhaps the world's top authority on the Stuxnet worm, argues that the mere hacking of critical systems is just a kind of 'hooliganism' that doesn't count as cyber warfare. True cyber weapons capable of inflicting cyber-physical damage require extraordinary expertise. Stuxnet, he notes, made headlines for using four exploits for "zero day" (or previously undiscovered) holes in the Windows operating system. Far more impressive was the metallurgic expertise needed to understand the construction of Iran's centrifuges. Those who created and programmed Stuxnet needed to know the exact amount of pressure or torque needed to damage aluminum rotors within them, sabotaging the country's uranium enrichment operation."

66 of 94 comments (clear)

  1. Really? by Anonymous Coward · · Score: 3, Interesting

    Haven't you been watching the news for the last six months?

    1. Re:Really? by icebike · · Score: 4, Interesting

      MIT Tech Review, (of all organizations) should know that cyber weapons aren't loaded onto airplanes and dropped like bombs, nor do they make a big noise.

      When you read the article they don't sound quite as clueless as the summary makes them out to be. Yet the comparison with nuclear weapons is one the article made right off the top.

      They speculate that Stuxnet was an anomaly not likely to be repeated. But that is only because Stuxnet was intended to be stealth and un-traceable. It is hardly the platform you would expect for a WAR time attack.

      Such weapons probably already exist, but since nobody with the cyber-weapon capability is actually at war with any other cyber target country, the weapons aren't being used. Its not like we used nuclear weapons on Iraq. Its not like the Syrian Electronic Army is much besides a bunch of script kiddies looking for weak spots.

      To use Cyber weapons, (as opposed to stealth cyber sabotage) you pretty much have to be at war. No one is willing to start one just to test a weapon. You can use clean room labs for that, and you are not likely to invite the MIT Tech Review to watch.

      --
      Sig Battery depleted. Reverting to safe mode.
    2. Re:Really? by gmuslera · · Score: 1

      Knowing how much damage people do misusing current normal systems, you really need weapons when you can intrude everywhere and be attributed to someone's else stupidity ?

    3. Re:Really? by Mister+Liberty · · Score: 1

      Indeed, it's a question that only somebody who has his head up his ass could ask.
      Cyberwar -- class war, and guess what, you're the victim. If you don't see this, enjoy
      your remotely controlled life.

    4. Re:Really? by rusty0101 · · Score: 2

      As fast as the internet generations flash by, I hate to say it, but cyber weapons are still at the throw rocks, wave spears and scream cat calls level. Think of cyber weapons (for now anyway) more as PC based biological warfare.

      We currently have limited vectors available. Stuxnet was sneakernet delivered to the systems it was designed to attack. It was essentially at the VD level of disease propagation. Yes it reached a large number of systems, but look at how many people end up with Syphilis and Gonorrhea every year.

      Botnets are fundamentally the common cold. You find out your system was infected, get it cleaned up, commit to washing your hands (install personal firewall software at least) and find out all your neighbors picked it up from somewhere as well, it sort of runs it's course, the immune system figures out how to take it out (AV software gets new signatures) and the virus mutates starting the cycle over again.

      We're a long way from the smallpox to ebola level of contagion. And the types of attacks that we're being told are cycber warfare attacks are substantially similar to monkeys throwing crap at the people watching them.

      --
      You never know...
    5. Re:Really? by icebike · · Score: 1

      True, and from the disease perspective, a very apt example.

      But instead of relying on the disease model, perhaps there is still a capability for attack more along the bullet model.

      Its not inconceivable that a small bug could be found (or built) in every network chipset that just waits for that magic sequence of packets, and fries itself. You don't need to take out every PC, all you need to do is disable routers.

      Is the US worry about having Chinese infrastructure components (routers and cellular equipment) less about the spying platform it might provide and perhaps more about the availability angle? If one call from home takes down all your major routers, you can kiss your backbone goodbye. Built into a low level component, this might never even reside in the router management software.

      (That's not to discount the possibility of undersea cable cutting, and other physical means).

      Disease model works for you if you are small, remote, and relatively powerless. Bullet to the brain works if you are large, widely distributed and stealth.

      --
      Sig Battery depleted. Reverting to safe mode.
    6. Re:Really? by rusty0101 · · Score: 1

      I would point to 3com as an exaple of an instance of your magic bullet to the brain bug, though that bug did not 'fry the chip,' it simply introduced an error into the packet that caused any packet carrying a specific bit pattern to be discarded by the next ethernet adapter the packet traversed and was checksummed before doing any further handling. That bug caused a large number of problems as the symptom looked like there was random noise on the network, but was very repeatable. As a result, there are a reasonable number of network engineers who take into consideration the problem described.

      That's not to say that you can't generate such a magic bullet, or sniper shot, just observing that at some level many engineers are already looking for it. Also making it work may not be quite as easy to implement as people think, as it very well may depend on how the packets are handled by the device you are looking to take out, and different classes of routers and network switches handle the packets differently. Which I won't get into here.

      Because of what it was intended to do, Stuxnet could very well be considered a targeted sniper bullet, but again the delivery was by sneakernet. Which didn't prevent it from getting around in other ways, just that it needed to use sneakernet to get to it's target systems. At some level it worked via the genetic match system, look for this type of associated hardware, and do work on this type of material. From a biological hazard equivalent, look for a genetic marker, say a combination of markers that gives someone blond hair, facial hair, blue eyes, and greater than 30% body fat, then work by destroying heart muscle tissue. You may end up affecting thousands of men, but miss your actual target because you didn't know that your target bleached his hair and wears blue colored contackt lenses to hide his brown hair and eyes. Stuxnet shows that we can do something like this within the technolgy field, but at this point we can't do the same thing with humans. Most of that has more to do with the lack of complexity within the computer industry, more than the fact that it's a statement of how poorly we can do biological attacks.

      --
      You never know...
    7. Re:Really? by mikael · · Score: 1

      It happened in the past with telephone exchanges. They had some self-maintenance code built in such that if one exchange detected a malfunction of some sort (accounts balance fail to match, line quality not good enough), it would send a fault message and a shutdown notice to it's neighboring exchanges. But there was a little bug. The message first hop was correct as it sent the ID of the originating exchange, the message relayed second and later hops was wrong because it sent the ID of the current exchange. Thus when one exchange went down, it shut down all the other exchanges.

      --
      Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
    8. Re:Really? by gzuckier · · Score: 1

      Heck, I've been wondering for years where are all the corporate malware? I mean, back when MSWord was fighting of Word Perfect, for instance (kids, ask your parents) I would have bet that one side or the other would have issued some worn or virus or something that would have had some subtle effect like making the other product take an extra 20 seconds opening a file. I didn't think it would be management, mind you, but I can't believe that none of the programming nuts on either side went rogue. Not to mention any of the volunteer partisans out there in early netland.

      --
      Star Trek transporters are just 3d printers.
  2. Classified by Anonymous Coward · · Score: 2, Interesting

    REALLY stupid question. It is not like they are going to wave them about for everyone to see. They most likely exist.

    1. Re:Classified by NFN_NLN · · Score: 2

      If Stuxnet was the world's cyber 'Little Boy,' where is the 'Fat Man'?

      Cisco gear is deployed in enterprise environments throughout the world.
      Windows dominates most desktops and has a large foot print for servers.

      The NSA has back-doors into all of them.

    2. Re:Classified by mrbluze · · Score: 1

      REALLY stupid question. It is not like they are going to wave them about for everyone to see. They most likely exist.

      Yes, the weaponization is built into every Intel processor, and probably most other processors and controllers. The weapons in cyber warfare start with the smart phones we point at our own heads and will shortly be the cars which can crash us into the next tree or fail to stop at the next busy intersection.

      --
      Do it yourself, because no one else will do it yourself. [beta blockade 10-17 Feb]
    3. Re:Classified by KernelMuncher · · Score: 1

      Not only do they exist but they're almost assuredly being used right now. It's just that the virus writers are the best (CIA / NSA) money can buy so their work remains anonymous.

    4. Re:Classified by mjwalshe · · Score: 1

      the U2, and Blackbird maybe

    5. Re:Classified by cavreader · · Score: 1

      You have absolutely no proof of any NSA backdoors. The NSA doesn't really need any backdoors when they can waltz right in the front door using legal and not so legal warrants, social engineering attacks, and subtle and not so subtle coercion. Stuxnext was a specifically targeted attack that required expert knowledge of the SCADA configuration and centrifuge control systems. It required physically breaking into two companies to steal the signed certificates used in conjunction with the 0-day exploits used. And most importantly it required an inside agent in the highly secure Iranian labs to inject the attack using a thumb drive. The reports of others (non-Iranians) detecting the Stuxnext virus in their systems was most likely a test designed to map the effectiveness of the transport mechanism. A mechanism that might be used for future attacks. After all a wide spread attack needs a big test bed if you actually need to determine if your attack even has a chance of being successful.

    6. Re:Classified by ShoulderOfOrion · · Score: 1

      I fail to see the difference, then, between future cyber warfare and the ongoing carnage I see on the sidewalks and streets right now.

    7. Re:Classified by NFN_NLN · · Score: 1

      You have absolutely no proof of any NSA backdoors.

      Eat shit, how fucking naive can you be:
      [NSA’s backdoor catalog exposed: Targets include Juniper, Cisco, Samsung, Huawei] http://gigaom.com/2013/12/29/n...

    8. Re:Classified by cavreader · · Score: 1

      So there is a catalog containing high end network hacks that even includes pricing for the various hacks? Is the NSA actually marketing their super secret technology? That would sort of defeat the whole purpose of secret backdoors now wouldn't it. Have any of the listed hacks been proven to exist? I mean you have the exact details on the equipment so it seems it would be pretty strait forward for a knowledgeable computer or network security firm to prove the existence of these backdoors. You basically linked to an article that links to a second article which contain no details other than someone has formed the opinion that a released document is a catalog of super secret spy technology. Well if that's what they think it must be true even with out an corroborative supporting evidence? Case closed. Oh and the linked article also goes on to mention that they cannot verify the providence of the information they have based their article on. That little missive is the mechanism to protect the journalist or publisher from being accused of making shit up wholesale.

    9. Re:Classified by NFN_NLN · · Score: 1

      Cisco responded to the claim of a backdoor. They didn't acknowledge it but they didn't deny it either. What do you think that means?
      Let me guess, you don't think the NSA is spying on citizens either because there is no evidence that meets your criteria.

    10. Re:Classified by cavreader · · Score: 1

      I think it means CISCO wants to avoid the entire discussion so they are going with "no comment" strategy.

      CISCO SVP John Stewart declared "As we have stated prior, and communicated to Der Spiegel, we do not work with any government to weaken our products for exploitation, nor to implement any so-called security âback doorsâ(TM) in our products," CISCO investigated the matter in detail and couldn't find the "backdoor" in their product but they did leave open the small possibility that a "backdoor" could exist and they just couldn't find it. This is preposterous but it does cover their assess in the event something turns up no matter how unlikely. Google, MS, and Apple have also formally denied their data centers or any of their products or services were compromised by NSA backdoors. These companies provided data when presented with a valid warrant issued from a normal court or from the FISA court. National security letters have also been used to get a company to provide the information requested. And while people may not agree with the FISA program or national security letters it does not mean they are technically illegal. Both of these methods can be and are being re-evaluated to determine what changes should be made to provide the average citizen with a higher level of privacy.
      I am pretty sure the NSA does spy on citizens but I believe it is targeted at individuals and not the entire population. But I have doubts they are capturing and analyzing all phone metadata, e-mails, and text messages generated by the entire US population. I also believe that the NSA spying activities and technical capabilities has been over exaggerated in some areas. I see a lot of people automatically believing any accusations made against the NSA without examining the details and veracity of the information used to make the accusations in the first place. I am not defending the NSA or the government I just think any accusations made should be examined in detail before formulating an opinion. It's come to the point where any accusation of wrong doing by the government is automatically 100% true and that type of thinking creates more problems than it solves. Personally I think the government missteps and over zealous security programs are the result of a high level of incompetence and bureaucratic idiocy instead of any malicious intent aimed at the average citizen.

  3. catalog of them by Anonymous Coward · · Score: 1

    http://leaksource.wordpress.com/2013/12/30/nsas-ant-division-catalog-of-exploits-for-nearly-every-major-software-hardware-firmware/

    Seems we heard little of them because secrecy was maintained for quite a while and (shocker) it was the US building/using most of them.

    1. Re:catalog of them by Anonymous Coward · · Score: 1

      Only the US has had a mole leak its list. Are you kidding yourself that Russia and China don't have their own?

    2. Re:catalog of them by Kishin · · Score: 1

      China and Russia are certainly involved in cyber espionage, especially for state secrets or intellectual property. I was simply pointing out that the US is the main country talking about how we have to be worried about cyberwar and is also the main country using a vast arsenal of cyberweapons against most developed nations, including allies & neutrals.

      This is both a nice irony and a potential explanation for why we know neither specifics of cyber weapons nor how to stop good ones.

  4. LOIC? HOIC? by ganjadude · · Score: 2

    We have E-cannons already, skript kiddies have been using them for years now.

    --
    have you seen my sig? there are many others like it but none that are the same
  5. Backhoes? by TheVillageIdiot · · Score: 3, Informative

    Is there a doubt in anyone's mind?

    --
    Perception is reality
  6. Well that's obvious... by Mashiki · · Score: 1

    The cyberweapons are between your fskin' ears. Malware, virii, etc, are just the tools.

    --
    Om, nomnomnom...
    1. Re:Well that's obvious... by Ceriel+Nosforit · · Score: 1

      Not between everybody's ears... Polymorphic shell code was spreading in the 90s and since then the researcher has moved far beyond. Most recently a single binary blob which hooks into wildly different embedded operating systems and even architectures was presented openly to the public. The most frightening thing about this current situation is that the NSA turned out to be an industrial-scale bottom-feeder instead of at the forefront in the field. Their lack of sophistication must be why they have resorted to attacking instead of defending.

      Attack is much easier than defence. The industry though the NSA was engaged in defence as per their charter as written in US law. There is a huge deficit of security compared to traditional business estimates, as is evident by the norm of routine dismissal of alarming information as the delusions of paranoid conspiracy theorists, who have since been vindicated by Mr. Snowden.

      Security has palpable economic value. Deficit in security is a deficit in economic potential. Because of this it appears as if the NSA has been engaged in economic warfare against the entire global economy. Huge engineering projects should be put on hold while the SCADA industry rectifies a culture of negligence, but they are forced to endanger eg. people living near hydroelectric dams since they are unable to suddenly provision the budget needed for security. - The NSA and its ilk took this, the tax-payers' money earmarked for defence, and used it for their... what should one call it, evil?

      All because they failed to recognize and recruit talent, idiotically opting for buzz-cuts over sandals. - They persist at trying to use primate social instincts to validate fields of expertise far outside their own. We are fortunate that Stuxnet and its predecessor were the best this culture could achieve.

      --
      All rites reversed 2010
    2. Re:Well that's obvious... by Tablizer · · Score: 2

      I found the weapon!

      --
      Table-ized A.I.
  7. The weapons are on chips, firmware or in the OS! by RocketRabbit · · Score: 5, Informative

    The weapons are on chips, firmware or in the OS! Did you not read that catalog that the Snowden fella kindly leaked for us?

    Ask Intel about iAMT and vPro. Ask China about Manchurian Microchips. Ask Microsoft about NSAKEY again, because if we didn't believe their lame excuses 10 years ago, we REALLY don't buy them today.

    Sure, the NSA probably has a large virus arsenal too, but when you can issue a National Security Letter to MS or Apple or Google or Mozilla, or simply activate one of our many programmer agents in place (such as in the IETF or at MS or Google) and just put the exploits wherever you like, viruses start seeming pretty silly. Heck, even our geopolitical adversaries are using US-made cyber-weapons - ahem, I mean operating systems and applications.

  8. Here's where they are. by Animats · · Score: 4, Informative

    Where are the cyber weapons? Already deployed and awaiting activation. Undocumented errata in major CPUs which allow bypassing memory protection. Preset keys in network cards allowing remote administration. Undocumented admin passwords in network firmware. Code signing certs in the hands of intelligence agencies. That's where.

  9. Re:Oh for fucks sake. Can't you read? by mysidia · · Score: 1

    Actually... the real cyberweapons are most likely in government storage; right by the WMDs.

    I bet the NSA or FBI has all the decryption keys, required to activate most of them.

    The president's nuclear football, probably now includes cyberweapon deployment, and internet shutdown codes.

  10. Re:The weapons are on chips, firmware or in the OS by deconfliction · · Score: 2

    Wow, parent god modded to -1 ...

    http://cryptome.org/2014/01/nsa-codenames.htm

    http://www.spiegel.de/international/world/catalog-reveals-nsa-has-back-doors-for-numerous-devices-a-940994.html

    http://www.wired.com/threatlevel/2013/12/nsa-hacking-catalogue/

  11. The internet: no place for critical infrastructure by DTentilhao · · Score: 1

    "What is Critical? To what degree is critical defined as a matter of principle, and to what degree is it defined operationally? I am distinguishing what we say from what we do.

    Mainstream media love to turn a spotlight on anything they can label “hypocrisy,” the Merriam-Webster Unabridged Dictionary meaning of which is:

    '[T]he act or practice of pretending to be what one is not or to have principles or beliefs that one does not have, especially the false assumption of an appearance of virtue.`

    The debate topic I propose here can therefore be restated as calling out, “Hypocrisy!” on the claim that the Internet is a critical infrastructure either drectly or by transitive closeure with the applications that run on or over it    " Dan Geer June 2013 ...

  12. First Cyber-Weapon? by kenwd0elq · · Score: 2

    Wouldn't the Morris Worm qualify as the first "cyber weapon"? Granted it was crude and uncontrollable, but I'd bet that the same could have been made for the Mark 1 Mod 0 Blunderbuss 500 years ago.

    And I think that the power of a cyber-weapon would lie primarily in secrecy, like land mines; you don't know you're under attack until you've already taken considerable damage.

    1. Re:First Cyber-Weapon? by ark1 · · Score: 3, Informative

      US software 'blew up Russian gas pipeline' in 1982 is I believe the first instance of what can be considered cyber war (or sabotage).

  13. Re:Oh for fucks sake. Can't you read? by Dodgy+G33za · · Score: 1

    I wonder how the world would react to a global internet shutdown.

    It would cause immense economic and probably industrial damage. I wouldn't be surprised if it were treated as an act of war by many countries.

  14. Cybernetics? by HalAtWork · · Score: 1

    In a cyber war, where are all the cybernetics? What even makes it "cyber"?

    --
    Twinstiq, game news
  15. There have been other since Stuxnet by seibai · · Score: 4, Informative
    Stuxnet was in 2010. Since then we have at the very least:
    1. 1. Duqu in 2011
    2. 2. Finfisher in 2011
    3. 3. Flame in 2012

    All of those were used by governments. One was used for industrial sabotage; the other two to spy on people who were then assassinated. Are these not "cyber-weapons"? What makes them different from Stuxnet but the degree of press they received?

  16. Same as usual by Tablizer · · Score: 1

    I'd tell you, but then I'd have to kill you.

    --
    Table-ized A.I.
  17. Re:The weapons are on chips, firmware or in the OS by RocketRabbit · · Score: 1

    I received the Slashdot Death Penalty for making fun of Roblimo's video Slashvertisements a while back, and even if my comments get tons of positive karma they will eventually be god-modded down. Read at -1, people, that's where we Slashdot political prisoners are.

  18. Where else? by Chris+Mattern · · Score: 2

    In the hands of the Cybermen, of course.

  19. There is no such thing as "cyber war" by vikingpower · · Score: 1

    Nor are there any such things as "cyber weapons". Whatever an ever-hype-producing press may want to sell to us. Whatever successive US governments, spending money they don't have, may want us to fear. The things simply don't exist.

    --
    Religous speak to God. Insane are spoken to by God. When all shut up, one can finally hear Shostakovich in peace
    1. Re:There is no such thing as "cyber war" by TapeCutter · · Score: 1

      Knowledge is the most powerful weapon in any contest. Read up on Alan Turing and the enigma machine and how it sank the U-boat fleet and was later used to set up the naval ambush at Midway island. But most of this spook stuff that's been going on since the end of WW2 is about the "five eyes" gathering and sharing industrial espionage from supposedly friendly democratic nations such as Germany and Indonesia.

      --
      And did you exchange a walk on part in the war for a lead role in a cage? - Pink Floyd.
  20. Self weaponizing infrastructure. by ka9dgx · · Score: 3, Interesting

    If we started building bunkers out of blocks of TNT, someone would rapidly figure out it was a bad idea.... but not so when it's abstracted several layers deep.

    In conventional munitions, it's necessary to deliver an explosive to a target. Thanks to the Unix security model, with its lack of any notion of multi-level security, we've created an entire infrastructure that's ready to self-destruct at a moment's notice. The military went on to actually procure and use multi-level security in a number of cases, while the idea is perceived as impossible, or unnecessary in the civilian space.

    All of our Linux, Mac OS, and Windows machines share the same brain dead security model. When you run code, you have to trust it not to be a virtual grenade, each and every time.

    The existence of billions of computers which blindly run code without actual security protecting the operating system (as a multi-level secure system does) is astoundingly stupid, and yet 99.9% of the "tech" community is just fine with this state of affairs.

    The infrastructure IS the weapon, its your job to change that over the next 20 years.... get crackin'

    1. Re:Self weaponizing infrastructure. by davydagger · · Score: 1

      thats why the government wrote SELinux, which is a completely diffrent approach to permissions than Drwxrwxrwt

      and yes, there are other permission schemes in various UNIX implementations to include linux, besides traditional POSIX two byte permissions.

    2. Re:Self weaponizing infrastructure. by ka9dgx · · Score: 1

      Access control lists are not adequate security, no matter how careful you are. You need the Bell-LaPadula or something like it that implements mandatory access controls to actually secure a system.

      SELinux is an attempt to push a little bit towards a secure system, but it's not the real deal.

    3. Re:Self weaponizing infrastructure. by Tom · · Score: 1

      The infrastructure IS the weapon, its your job to change that over the next 20 years.... get crackin'

      We've already tried changing it for the past 20 years. The problem is that IT is largely commercial, and in the commercial world, "good enough" is enough. If it's not threatening the bottom line, then it's ok. And that's not limited to IT security. Physical security at most corporate headquarters is pathetic and only detracts non-determined break-ins. It's trivial to get hired into a position with access to even sensitive areas (say, in the cleaning crew) with no background checks. And I could say something about how finances are really handled in the corporate world, but unless you already know, you wouldn't believe me.

      It's not IT security. That is just part of the bigger whole. Our entire economy is a house of cards, and since the economy has come to dominate our society (politicians have long ceased to have visions, much less actually change things, they're purely reactive), that leaks into everything.

      --
      Assorted stuff I do sometimes: Lemuria.org
    4. Re:Self weaponizing infrastructure. by TapeCutter · · Score: 1

      Security at my home tonight is lax, it's 11pm, both doors are wide open and there's a nice breeze coming through after a hot Aussie day, most of the day tourists have left the nearby beach. Security is just another word for distrust, and I generally trust my countrymen not to sneak in while I'm napping on the couch. Re sig below: more security may save your life, but more trust may make it worth something.

      --
      And did you exchange a walk on part in the war for a lead role in a cage? - Pink Floyd.
    5. Re:Self weaponizing infrastructure. by Tom · · Score: 1

      As with most things, the proper balance and context matter.

      When you're in the countryside or suburbs, leaving your door unlocked is probably cool. When you live in the center of a large city, less so.

      --
      Assorted stuff I do sometimes: Lemuria.org
  21. In times of NSA... by Parker+Lewis · · Score: 1

    ... they don't need a cyber weapon, as they can use the law to enforce any american company responsible for the major OS players to give them everythink they need.

  22. To kill a centrifuge by MajVariola · · Score: 1

    You just need to understand critical speeds, resonances, and that you shouldn't suddenly change the speed of the rotors. But in _To kill a centrifuge_ Langner describes some games with pressures as well. Adding random valve openings and closings in a refinery, gas plant, sewage plant, etc. will look like intermittent failures and just as hard to 'debug'. Eventually you'll hit a particularly nasty set. Errant monkeys playing with your PLCs. But it must be a slow day at Tech Review..

  23. Re:The weapons are on chips, firmware or in the OS by deconfliction · · Score: 1

    I received the Slashdot Death Penalty for ...

    Well, I'm guessing it was more for things like-

    Stallman is an ethnic Jew and I think we all know that sometimes Jewish folks are given to exaggeration and hyperbole.

    But still, thats wierd because I've made (arguably non credible) death threats against Hillary Clinton and jcr, and somehow I now have 2 accounts with excellent karma. I'd suggest watching, and abandoning your racial stereotyping and focus on the legitimate issue of the ultimate opposite of seperation of church and state going on with Israel.

    Still, of the last dozen or so comments of yours I read, your mods do seem pretty consistently unreasonable (compared to mine).

    Sadly we do live in a day and age where various political un-topics do exist-

    - criticizing Israel on the seperation of church and state
    - criticizing China on the Tiananmen Square Mass^H^H^H Incident of 1989
    - criticizing the NSA and the tech oligarchs on the laughable insecurity of closed source OS-accessable reflashable without write-enable jumper firmware

    etc....

    Thank God for the Snowden Revelations. (and yes, the 'god' was a perhaps freudian typo for 'got', but you knew that and deftly jumped on it in an information warfare way anyway. Good Job!

  24. cold cyber war - 100,000 attacks from China daily by raymorris · · Score: 3, Interesting

    I'd guesstimate on average, we log about 50-100 attack attempts from Chinese IPs per server per day. Our sample size is only several thousand customer servers, but that's enough to get a rough idea of what's happening on the internet generally.

    There IS cyber war going on, much like the Cold War. It's not on the news every day, but it's happening just as much as Reagan was trying to defeat the USSR. The weapons aren't that advanced most of the time simply because they don't need to be - the targets very cooperatively run PHP scripts written by kids with NO security training whatsoever. When your admin interface is open to brute force and SQL injection attacks, advanced weapons aren't needed. The secretary of state and chairman of the senate defense committee have the same unpatched Linksys router at home as any random person. How many high level bureaucrats have VoIP at home? VoIP "protected" by Netgear's firewall?

  25. Great Firewall of china by Infestedkudzu · · Score: 1

    China could probably ddos attack all of the uSA that counts.

  26. Thursday - a weapon to take down gvt computers by raymorris · · Score: 1

    The government's newest major computer system is healthcare.gov. What kind of weapon you need to take down major, modern government computer systems ? Apparently, Thursdays are you sufficient to take down healthcare.gov.

    Super advanced cyber weapons simply aren't needed. How many programmers who ended up working government jobs even know what a "SQL injection" is, much less how to prevent it? One small sample suggests only 20% of government programmers know what it is, and 10% use parameterized queries, leaving most systems open to trivial attacks.

  27. Where are they? by PPH · · Score: 3, Interesting

    Sitting in some cyber arsenal, awaiting use. The problem with cyber attacks is that once discovered, they can be defended against. So from a tactical point of view, they are best kept in reserve until the case for their use is overwhelming.

    As a part of Operation Orchard, it is theorized that Israel may have disabled Syrian air defense via back doors in their IT systems. If so, the existance of such back doors was revealed by a post mortem analysis and the holes in the systems plugged. So that would be a case of a one time use. It had better be worthwhile (and arguably, it was).

    The cyber weapons in the hands of criminal organizations are best used in a very low key manner, so as not to attract attention and patches. Criminals are probably continuing to bleed some credit cards for $9.85 here and there, hoping to stay under the radar for as long as possible.

    --
    Have gnu, will travel.
  28. Re:The weapons are on chips, firmware or in the OS by fermion · · Score: 1

    To Wit Many weapons, though a common person cannot understand how they work, at least understand how they can be used and effective.

    --
    "She's a scientist and a lesbian. She's not going to let it slide." Orphan Black
  29. Overloading unprepared equipment isn't difficult. by couchslug · · Score: 1

    " Those who created and programmed Stuxnet needed to know the exact amount of pressure or torque needed to damage aluminum rotors within them, sabotaging the country's uranium enrichment operation."

    Mechanic with machinist training here. That's no big deal. Overloading a system by running it as hard as the drive motors allow will often break it as many machines aren't built with protective mechanical safeties such as simple wasp-waist shear points on driveshafts, shear pins, or mechanical governors.

    It's easier to control machinery electrically and when a targeted operator doesn't expect malicious control operation they aren't likely to have designed with it in mind.

    --
    "This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
  30. Re:Overloading unprepared equipment isn't difficul by deconfliction · · Score: 1

    Overloading a system by running it as hard as ...

    Not that I'm accusing Lennart Poettering of cyberwarfare, but a highly relevant anecdote is that when pulseaudio was first thrust upon me in fedora, I and many(?) others discovered that it was only software that was preventing our PC's audio out from being overdriven to the point of health and property risk. I discovered this as my volume, due to bug, instantaneously jumped to 400% as I had my sony earbuds in listening to music. The result was excruciating ear pain for the duration of time (about half a second) it took my body to react and rip the earbuds out of my ears. I wonder (not enough to experiment) what would have happened if my speakers had been connected. It would have certainly taken me more than half a second to cause things to stop, and I'm guessing permanent damange to my speakers may have occurred.

    Of course, I'm not sure how expensive it would have been for sony to have put a safety in the earbuds. Still, quite the educational experience that was precisely illustrative of what you described, but in a more personal non-industrial sort of way.

  31. Not the only one. by jcr · · Score: 1

    Stuxnet is an anomaly: the first and only cyber weapon known to have been deployed.

    What about this?

    -jcr

    --
    The only title of honor that a tyrant can grant is "Enemy of the State."
  32. Re:The weapons are on chips, firmware or in the OS by complete+loony · · Score: 1

    Most of that catalog listed firmware and bootloader hacks to patch an OS in memory. Most firmware is horribly buggy and rarely updated. Getting your payload into windows / android / iOS directly runs the very great risk of being noticed.

    --
    09F91102 no, 455FE104 nope, F190A1E8 uh-uh, 7A5F8A09 that's not it, C87294CE no. Ah! 452F6E403CDF10714E41DFAA257D313F.
  33. cyber-physical damage by mnt · · Score: 1

    hm. let's translate that to a form that may make more sense: computer-physical damage. nope, still makes no sense.

  34. why go through double firewalls unnecessarily by raymorris · · Score: 2

    All available evidence suggests that the vast majority originate in China. That makes sense - it would be silly to go through the great firewall, twice, and slow yourself down by going around the world and back, when you could just as easily use a US zombie.

  35. Re:The greatest cyberweapons are... by kmoser · · Score: 1

    They are the sleeper cells of cyber warfare.

  36. Where are the cyberweapons? by easyTree · · Score: 1

    Iraq?

    --
    Requiem for the American Dream
  37. Re:The weapons are on chips, firmware or in the OS by complete+loony · · Score: 1

    And how many times has malware started to take advantage of bugs that Microsoft just patched?

    There are people who examine every change to find the backdoors that have been closed so they can attack them on unpatched machines. Do you think they'd ignore a backdoor that was just opened?

    --
    09F91102 no, 455FE104 nope, F190A1E8 uh-uh, 7A5F8A09 that's not it, C87294CE no. Ah! 452F6E403CDF10714E41DFAA257D313F.