Slashdot Mirror

← Back to Stories (view on slashdot.org)

Researchers Found a Hacking Tool that Targets Energy Grids on the Dark Web (vice.com)

Posted by msmash on from the security-threats dept.

An anonymous reader writes: A sophisticated piece of government-made malware, designed to do reconnaissance on energy grid's system ahead of an eventual cyberattack on critical infrastructure, was found on a dark web hacking forum. SentinelOne's researchers believe the malware was created by a team of hackers working for a government, likely from eastern Europe, according to a report published on Tuesday. Udi Shamir, chief security officer at SentinelOne, said that it's normal to find reused code and malware on forums because "nobody tries to reinvent the wheel again and again and again." But in this case, "it was very surprising to see such a sophisticated sample" appear in hacking forums, he told Motherboard in a phone interview.

17 of 35 comments (clear)

  1. Black Market Electrons by Anonymous Coward · · Score: 1

    Why are energy grids on the dark web?

    1. Re:Black Market Electrons by GuB-42 · · Score: 2

      Probably to power dark bulbs.

    2. Re:Black Market Electrons by NotInHere · · Score: 1

      They are made of dark energy, which forms most of the energy in our universe! This means, hacking dark energy power grids brings most space dollars.

  2. too many secrets by Joe_Dragon · · Score: 3, Insightful

    too many secrets

  3. Tool that targets energy grids on the dark web by KitFox · · Score: 1

    I for one am surprised to discover that the dark web has enough energy grids to make them worth targeting.

    </deadpan>

    --

    @Whee

  4. Was it possibly .... by PPH · · Score: 2

    ... derived from Nitro Zeus? This is why one has to be careful about weapons proliferation. Even if you go in thinking that only the 'good guys' will get them.

    --
    Have gnu, will travel.
  5. Repeat after me.... by Lumpy · · Score: 4, Informative

    If a power control system or any other important infrastructure has it's SCADA system connected over the internet or even TO the internet....

    The people in charge of it are MORONS.

    There is ZERO reason to use the internet as your data systems for control interconnected. quit being cheap assholes and use private point to point. on an air gapped network.. And while you are at it HIRE COMPETENT ITSEC PEOPLE. Not Ex cops, those guys dont know shit about computer security...

    --
    Do not look at laser with remaining good eye.
    1. Re:Repeat after me.... by cstdenis · · Score: 2

      But then the CEO can't look at pretty real-time graphics on his cell phone. Not going to happen.

      --
      1984 was not supposed to be an instruction manual.
    2. Re:Repeat after me.... by DNS-and-BIND · · Score: 2

      They tried having two systems, the workers wouldn't use them correctly because it was too much of a pain in the ass for them. Then, the managers bitched because they had to use a separate system to view the production statistics. Nobody liked it and the IT department was forced to comply. Cheering was heard as the second air-gapped systems were eliminated and the executives celebrated the cost-cutting with a round of bonuses for virtuous behavior.

      --
      Shutting down free speech with violence isn't fighting fascism. It IS fascism!
    3. Re:Repeat after me.... by Lumpy · · Score: 1

      "They tried having two systems, the workers wouldn't use them correctly"

      The simple solution is to fire those workers and hire some that have an IQ over 100 that are competent enough to do the job?

      The United states military seems to be able to do this, hell even the ARMY is able to.

      --
      Do not look at laser with remaining good eye.
  6. Re:Wait, the GRIDS are on the Dark Web? by Phusion · · Score: 1

    *sigh* just in case you're serious, they found the tool on a hacking forum HOSTED on the dark net. It's not a story about accessing energy grids via TOR... But you're probably just trolling, so, hats off to you I guess.

    --
    640k ought to be enough for anyone.
  7. Re:Wait, the GRIDS are on the Dark Web? by OzPeter · · Score: 1

    Why would the energy grids be plugged into the Dark Web?

    Because when all the evil hackers are looking for energy grids on the Normal Web, what better place to hide your energy grid than putting it on the Dark Web!

    Sheer brilliance.

    --
    I am Slashdot. Are you Slashdot as well?
  8. Re:Wait, the GRIDS are on the Dark Web? by sysrammer · · Score: 1

    Truthfully, that's why I clicked this story. I too wanted to see how energy grids were associated with the dark web. Poor editing, or bait and switch?

    --
    His ignorance covered the whole earth like a blanket, and there was hardly a hole in it anywhere. - Mark Twain
  9. Re: LOLWUT? by sysrammer · · Score: 1

    the wheel was invented over and over again

    Yeah. Saw another version of one the other day. Some kind of big screw-like pneumatic thingy.

    --
    His ignorance covered the whole earth like a blanket, and there was hardly a hole in it anywhere. - Mark Twain
  10. Re:Wait, the GRIDS are on the Dark Web? by sysrammer · · Score: 1

    Why would the energy grids be plugged into the Dark Web?

    ...what better place to hide your energy grid than putting it on the Dark Web!

    Sheer brilliance.

    Wouldn't sheer brilliance cause it to become Web Lite?

    --
    His ignorance covered the whole earth like a blanket, and there was hardly a hole in it anywhere. - Mark Twain
  11. Do you have to post this cyber BS on a tech forum? by tetraverse · · Score: 1

    Who is going to protect our critical infrastructure from these no good commie atheist salo eaters.

  12. Guess what? Electric grids were already hacked! by vityok · · Score: 1

    Guess what? Electric grids were already hacked in what appears to be one of the first more or less real cyber-wars (previous - Estonia 2007, Georgia 2008 - were primarily powerful DDoS attacks to either disrupt services or cut off the country from the rest of the world).

    The hacking happened in December 2015, in Ukraine. The attack was a sophisticated APT attack from Russia.

    You can find more by following description in IR-ALERT-H-16-056-01 or reading the Wired article by Kim Zetter.

    And, by the way, malware did find its way into nuclear power plants (though not control systems).