Gemini version available ♊︎

Kaspersky: Russian Nuclear Plant Runs Windows, Gets Infected With Malware Developed by the NSA (Stuxnet)

Posted in GNU/Linux, Microsoft, Windows at 7:10 pm by Dr. Roy Schestowitz

Tsar Bomba mushroom cloud
Tsar Bomba mushroom cloud

Summary: New example of the high cost of Windows and a new example of FUD in the press, attributing an attack on SCADA to “Linux”

BY NOW, owing to leaks, people know where Stuxnet came from. Israel and the United States developed it and then used it to derail facilities in Iran. It is cyberwar, and it was started quite proactively. A lot of businesses around the world suffered from Stuxnet too, demonstrating quite clearly that the NSA’s criminal behaviour has a high price; others pay the toll, not just US taxpayers. Given the special relationship between Microsoft and the NSA, Stuxnet’s reliance on Windows is not surprising; it’s well known by now.

Putting aside the old news about Stuxnet, Kaspersky claims that Stuxnet infected a Russian nuclear plant. This is extremely dangerous because the US and Russia/USSR have been very close to nuclear war on numerous occasions in the past 30 years. A lot of people don’t know this because such material takes decades before it’s declassified.

“A lot of people don’t know this because such material takes decades before it’s declassified.”With clever phishing scams, not even strong passwords that computer scientists tend to choose can provide protection and it is no secret that Free software is penetrable due to incompetence during setup [1] or even delay in patching/maintenance (new examples in [2-8]). Underlying languages/frameworks can sometimes be the culprits [9,10], but that doesn’t mean that in practice it is easy to crack a GNU/Linux system. Evidence suggests that it is hard.

Having had Windows malware issues in space (USB sticks inside Windows), the International Space Station (ISS) recently moved to Debian GNU/Linux [1. 2]. But this weird article tells a dubious story. It says that ISS got a malware infection from Russian astronauts and then adds this sentence: “The reason is that the space station uses computer-controlled SCADA systems in order to manage various physical components of the satellite. As these systems are based on Linux, they are open to infection.”

“The problem is prevalent in proprietary software not just of Microsoft and the solution may be to simply ban the use of proprietary software.”Really?

Stuxnet malware has been targeting SCADA systems and they run Windows. We’ve sent almost a dozen E-mails back and forth to verify the facts and we are pretty sure the above is a lie. Sosumi says “the rhetoric is made as if linux is the problem [...] the whole thing is fishy [...] it’s like I said, the article is done as if linux was the problem” (it’s not).

iophk wrote: “I would think that the PR people for all the major distros would be all over that article correcting it and demanding a retraction.” He later said: “If you have any contact at Red Hat and Canonical, they might want to find some way of correcting this article [...] It makes it look like the previous Windows infections were Linux.”

Nice FUD they got there.

“Hackers”, in the mean time, are being demonised by Microsoft, which simply misuses the term [11]. The US government cannot seem to understand that relying on Windows in critical systems is a bad idea [12,13] because even fonts open a back door [14,15]. The problem is prevalent in proprietary software not just of Microsoft [16] and the solution may be to simply ban the use of proprietary software [17]. It is improperly reviewed.

Related/contextual items from the news:

  1. SSL Study Shows Most Sites Incorrectly Configured

    Black Hat research takes a deep look at SSL security and finds it lacking due to a number of common configuration issues.

  2. Ubuntu: 2014-1: OpenSSH vulnerability
  3. Gentoo: 201310-17 pmake: Insecure temporary file usage
  4. Gentoo: 201310-16 TPTEST: Arbitrary code execution
  5. Gentoo: 201310-18 GnuTLS: Multiple vulnerabilities
  6. Gentoo: 201310-19 X2Go Server: Arbitrary code execution
  7. Debian: 2786-1: icu: Multiple vulnerabilities
  8. Debian: 2787-1: roundcube: design error
  9. Is PHP Secure?

    In a classic watering hole attack, hackers compromised a well-known, respected high-traffic Website and planted malware in a bid to infect unsuspecting visitors. On Oct. 24, Google began to flag PHP.net as being a site hosting malware, i.e., potentially a watering hole.

  10. PHP.net Compromised. Served Malicious JS
  11. M$ Denigrates Hackers
  12. DHS hammering out cybersecurity planning
  13. Database hacking spree on US Army, NASA, and others costs gov’t millions

    Federal prosecutors have accused a UK man of hacking thousands of computer systems, many of them belonging to the US government, and stealing massive quantities of data that resulted in millions of dollars in damages to victims.

  14. Microsoft in a TIFF over Windows, Office bug that runs code hidden in pics
  15. Not Again! M$’s OS Executes Data In Images…

    It’s such a simple concept. Data should not be executed. Images are data. But, no, M$ does not get that and randomly executes code contained in some TIFF images. Out of the bowels of M$’s complexity comes yet another invitation to millions of bad guys to post TIFFs all over the web damaging the systems of millions of users.

  16. 38 million Adobe users hacked, not 3 million

    Adobe has revealed the massive hack it suffered a month ago was far bigger than initially reported, with attackers obtaining data on more than 38 million customer accounts.

  17. [Bruce Schneier:] Understanding the Threats in Cyberspace

    The primary difficulty of cyber security isn’t technology — it’s policy.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New

  1. Links 5/12/2021: Touchpad Gestures in XWayland

    Links for the day

  2. Society Needs to Take Back Computing, Data, and Networks

    Why GemText needs to become 'the new HTML' (but remain very simple) in order for cyberspace to be taken away from state-connected and military-funded corporations that spy on people and abuse society at large

  3. [Meme] Meanwhile in Austria...

    With lobbyists-led leadership one might be led to believe that a treaty strictly requiring ratification by the UK is somehow feasible (even if technically and legally it's moot already)

  4. The EPO's Web Site is a Parade of Endless Lies and Celebration of Gross Violations of the Law

    The EPO's noise site (formerly it had a "news" section, but it has not been honest for about a decade) is a torrent of lies, cover-up, and promotion of crimes; maybe the lies are obvious for everybody to see (at least EPO insiders), but nevertheless a rebuttal seems necessary

  5. The Letter EPO Management Does Not Want Applicants to See (or Respond to)

    A letter from the Munich Staff Committee at the EPO highlights the worrying extent of neglect of patent quality under Benoît Battistelli and António Campinos; the management of the EPO did not even bother replying to that letter (instead it was busy outsourcing the EPO to Microsoft)

  6. IRC Proceedings: Saturday, December 04, 2021

    IRC logs for Saturday, December 04, 2021

  7. EPO-Bribed IAM 'Media' Has Praised Quality, Which Even EPO Staff (Examiners) Does Not Praise

    It's easy to see something is terribly wrong when the people who do the actual work do not agree with the media's praise of their work (a praise motivated by a nefarious, alternate agenda)

  8. Tux Machines is 17.5 Years Old Today

    Tux Machines -- our 'sister site' for GNU/Linux news -- started in 2004. We're soon entering 2022.

  9. Approaching 100

    We'll soon have 100 files in Git; if that matters at all...

  10. Improving Gemini by Posting IRC Logs (and Scrollback) as GemText

    Our adoption of Gemini and of GemText increases; with nearly 100,000 page requests in the first 3 days of Decembe (over gemini://) it’s clear that the growing potential of the protocol is realised, hence the rapid growth too; Gemini is great for self-hosting, which is in turn essential when publishing suppressed and controversial information (subject to censorship through blackmail and other ‘creative’ means)

  11. Links 4/12/2021: IPFire 2.27 Core Update 162 and Genode OS Framework 21.11

    Links for the day

  12. Links 4/12/2021: Gedit Plans and More

    Links for the day

  13. Links 4/12/2021: Turnip Becomes Vulkan 1.1 Conformant

    Links for the day

  14. IRC Proceedings: Friday, December 03, 2021

    IRC logs for Friday, December 03, 2021

  15. Links 4/12/2021: EndeavourOS Atlantis, Krita 5.0.0 Beta 5, Istio 1.11.5, and Wine 6.23; International Day Against DRM (IDAD) on December 10th

    Links for the day

  16. Another Gemini Milestone: 1,500 Active Capsules

    This page from Balázs Botond plots a graph, based on these statistics that now (as of minutes ago) say: “We successfully connected recently to 1500 of them.” Less than a fortnight ago more than 1,800 capsules overall were registered by Lupa, almost quadrupling in a single year

  17. [Meme] António Campinos and Socialist Posturing

    Staff of the EPO isn’t as gullible as António Campinos needs it to be

  18. António Campinos as EPO President is Considered Worse Than Benoît Battistelli (in Some Regards) After 3.5 Years in Europe's Second-Largest Institution

    The EPO's demise at the hands of people who don't understand patents and don't care what the EPO exists for is a real crisis which European media is unwilling to even speak about; today we share some internal publications and comment on them

  19. Media Coverage for Sale

    Today we're highlighting a couple of new examples (there are many other examples which can be found any day of the year) demonstrating that the World Wide Web is like a corporate spamfarm in "news" clothing

  20. Links 3/12/2021: GNU Poke 1.4 and KDDockWidgets 1.5.0

    Links for the day

  21. IRC Proceedings: Thursday, December 02, 2021

    IRC logs for Thursday, December 02, 2021

  22. Links 3/12/2021: Nitrux 1.7.1 and Xen 4.16 Released

    Links for the day

  23. Links 2/12/2021: OpenSUSE Leap 15.4 Alpha, Qt Creator 6

    Links for the day

  24. The EPO's “Gender Awareness Report”

    There’s a new document with remarks by the EPO’s staff representatives and it concerns opportunities for women at the EPO — a longstanding issue

  25. IRC Proceedings: Wednesday, December 01, 2021

    IRC logs for Wednesday, December 01, 2021

  26. EPO Staff Committee Compares the Tactics of António Campinos to Benoît Battistelli's

    The Central Staff Committee (CSC) of the EPO talks about EPO President António Campinos, arguing that “he seems to subscribe to the Manichean view, introduced by Mr Battistelli…”

  27. Prof. Thomas Jaeger in GRUR: Unified Patent Court (UPC) “Incompatible With EU Law“

    The truth remains unquestionable and the law remains unchanged; Team UPC is living in another universe, unable to accept that what it is scheming will inevitably face high-level legal challenges (shall that become necessary) and it will lose because the facts are all still the same

  28. Links 1/12/2021: LibrePlanet CFS Extended to December 15th and DB Comparer for PostgreSQL Reaches 5.0

    Links for the day

  29. EPO Cannot and Will Not Self-Regulate

    The term financialisation helps describe some of the activities of the EPO in recent years; see Wikipedia on financialisation below

  30. [Meme] Germany's Licence to Break the Law

    Remember that the young Campinos asked dad for his immunity after he had gotten drunk and crashed the car; maybe the EPO should stop giving diplomatic immunity to people, seeing what criminals (e.g. Benoît Battistelli) this attracts; the German government is destroying its image (and the EU’s) by fostering such corruption, wrongly believing that it’s worth it because of Eurozone domination for patents/litigation

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts