Presentation is loading. Please wait.

Presentation is loading. Please wait.

Stuxnet By Shane Serafin.

Published byMelina Teresa Owen Modified over 6 years ago

Similar presentations

Presentation on theme: "Stuxnet By Shane Serafin."— Presentation transcript:

1 Stuxnet By Shane Serafin

2 Overview What is Stuxnet How it was spread How it was detected
What it exploited What it looked for What it did Who it attacked Who was behind it The after effects of Stuxnet The future of Stuxnet

3 What is Stuxnet? Name given to complex malware used for an attack on Iran’s Nuclear Facility First real cyber weapon So advanced estimated 20x more complex than previous virus codes Tens thousand plus lines of code Very professionally written Multiple languages like C, C++, and other object oriented languages Half a megabyte in size

4 How it was spread? Infected USB drives
Minimized risk of discover by only allowing it to spread to no more than three PCs then it stopped Released a year before it was discovered and drew any attention

5 How it was detected? Stayed dormant and didn’t attack
Had a real clearance that was stolen instead of a forged security clearance Told systems everything was fine after it attacked First reported in July 2010 by VirusBlokAda Computer in Iran facility was in reboot loop Sent information to a domain Set up sinkhole to reroute traffic

6 What it exploited? Security gaps that system creators are unaware of called “Zero Days” 12 million pieces of malware examined a year by researches with less than a dozen having it Successful viruses exploit a Zero Day Sell on Black Market for $100,000

7 What it looked for? Programmable logic controller called Siemens S7-300 Circuitry and software Iran’s nuclear facility Also used in traffic lights, assembly lines, oil pipelines, gas pipelines, water treatment, and electricity grids

8 What it did? Changed settings in centrifuges that spin nuclear material Sped up the spin cycle to damage it Needed replaced 10x faster

9 Who it attacked? Iran’s Nuclear enrichment facilities
Set the program back several years Open call to hackers to join Iranian Revolutionary Guard. (2nd largest online)

10 Who was behind it? Unknown, nothing was proven
Nation with funding and technology Suspects: USA Israel Russia

11 The After Effects of Stuxnet
New era of warfare begun Attacks on critical infrastructure in the US Defense Secretary Leon Panetta “there is a strong likelihood that next Pear Harbor we confront will be from a cyber attack” Enforcement officials stressing important on Cyber Security

12 The Future of Stuxnet Who will redesign it
Available online and is open source No telling who or what they will target

13 Video About Stuxnet

14 Questions

15 Sources who-is-behind.html xnet_the_best_malware_ever_?taxonomyId=85&pageNumb er=1 /stuxnet-computer-worm-opens-new-era-of- warfare detectives-deciphered-stuxnet/all/1

Download ppt "Stuxnet By Shane Serafin."

Similar presentations

Targeted Cyberattacks: A Superset of Advanced Persistent Threats Published in: Security & Privacy, IEEE (Volume:11, Issue: 1 ), Jan.-Feb. 2013, 54- 61.

Targeted Cyberattacks: A Superset of Advanced Persistent Threats Published in: Security & Privacy, IEEE (Volume:11, Issue: 1 ), Jan.-Feb. 2013,
Viruses,Hacking and Backups By Grace Mackay 8K Viruses Hacking and Hackers Backups.

Viruses,Hacking and Backups By Grace Mackay 8K Viruses Hacking and Hackers Backups.
CONTROL SYSTEMS AND CYBER SECURITY 2600 MEETING JUNE 6,2014 MICHAEL TOECKER Mikhail Turcher, big fanci pantsie.

CONTROL SYSTEMS AND CYBER SECURITY 2600 MEETING JUNE 6,2014 MICHAEL TOECKER Mikhail Turcher, big fanci pantsie.
Information Security Overview in the Israeli E-Government April 2010 Ministry of Finance – Accountant General E-government Division.

Information Security Overview in the Israeli E-Government April 2010 Ministry of Finance – Accountant General E-government Division.
Rob Gaston 04/04/2013 CIS 150. Cyber Warfare  U.S. government security expert Richard A. Clarke, Cyber War (May 2010): cyber warfare is actions by.

Rob Gaston 04/04/2013 CIS 150. Cyber Warfare  U.S. government security expert Richard A. Clarke, Cyber War (May 2010): "cyber warfare" is "actions by.
Assessing Actions Along the Spectrum of Cyberspace Operations

Assessing Actions Along the Spectrum of Cyberspace Operations
COMPLEXITY AND CYBER DEFENSE TTI/VANGUARD TAMING COMPLEXITY October 5, 2011 Michael A. Wertheimer, DoD.

COMPLEXITY AND CYBER DEFENSE TTI/VANGUARD TAMING COMPLEXITY October 5, 2011 Michael A. Wertheimer, DoD.
HALDEBIQUE Geoffroy ROYER Johan  Crime motivated attacks  Hacktivism  Cyber Warfare.

HALDEBIQUE Geoffroy ROYER Johan  Crime motivated attacks  Hacktivism  Cyber Warfare.
McGraw-Hill/Irwin Copyright © 2013 by The McGraw-Hill Companies, Inc. All rights reserved. Extended Learning Module H Computer Crime and Digital Forensics.

McGraw-Hill/Irwin Copyright © 2013 by The McGraw-Hill Companies, Inc. All rights reserved. Extended Learning Module H Computer Crime and Digital Forensics.
Protecting our Cyber Space Staying Ahead of the Game Basel Alomair National Center for Cybersecurity Technology (C4C) King Abdulaziz City for Science and.

Protecting our Cyber Space Staying Ahead of the Game Basel Alomair National Center for Cybersecurity Technology (C4C) King Abdulaziz City for Science and.
Stuxnet Malware Attribution Mike Albright CS 591 Fall 2010.

Stuxnet Malware Attribution Mike Albright CS 591 Fall 2010.
Novel Information Attacks From “Carpet Bombings” to “Smart Bombs”

Novel Information Attacks From “Carpet Bombings” to “Smart Bombs”
DuWayne Aikins Information Security Forum May 21, 2015 Cyber, A Militarized Domain: What is Means to Texas.

DuWayne Aikins Information Security Forum May 21, 2015 Cyber, A Militarized Domain: What is Means to Texas.
Stuxnet – Getting to the target Liam O Murchu Operations Manager, Symantec Security Response 1 Feb 2011.

Stuxnet – Getting to the target Liam O Murchu Operations Manager, Symantec Security Response 1 Feb 2011.
STUXNET. Summary What is Stuxnet? Industial Control Systems The target/s of Stuxnet. How Stuxnet spreads. The impact of Stuxnet on PLC’s.

STUXNET. Summary What is Stuxnet? Industial Control Systems The target/s of Stuxnet. How Stuxnet spreads. The impact of Stuxnet on PLC’s.
 Discovered in June/July 2010  Targeted Siemens software and equipment running Microsoft Windows  First malware for SCADA systems to spy and subvert.

 Discovered in June/July 2010  Targeted Siemens software and equipment running Microsoft Windows  First malware for SCADA systems to spy and subvert.
Critical Information Infrastructure Protection: Urgent vs. Important Miguel Correia 2012 Workshop on Cyber Security and Global Affairs and Global Security.

Critical Information Infrastructure Protection: Urgent vs. Important Miguel Correia 2012 Workshop on Cyber Security and Global Affairs and Global Security.
How Stuxnet changed the landscape for plant engineers Richard Trout, Director for Client Solutions, Trout I.T.

How Stuxnet changed the landscape for plant engineers Richard Trout, Director for Client Solutions, Trout I.T.
Instilling rigor and imagination in analysis Countering the Iranian Nuclear Threat Stuxnet and its Broader Implications Randolph H. Pherson Mary C. Boardman.

Instilling rigor and imagination in analysis Countering the Iranian Nuclear Threat Stuxnet and its Broader Implications Randolph H. Pherson Mary C. Boardman.
A sophisticated Malware Arpit Singh CPSC 420

A sophisticated Malware Arpit Singh CPSC 420

Similar presentations

Ads by Google