EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.30.15

The Lessons of Stuxnet: Never Use Microsoft Windows

Posted in Microsoft, Security, Windows at 4:26 pm by Dr. Roy Schestowitz

The NSA is playing with nukes

Missiles

Summary: Windows is sufficiently ‘NSA-compatible’ for remote compromise and physical damage (sabotage) to highly sensitive, high-risk equipment

MANY news reports from around Friday [1-13] made it abundantly clear that Stuxnet, an Israel- and US-made virus that targets Microsoft Windows, was deployed not only in Iran (which uses Windows and Microsoft Linux) but also deployed (albeit unsuccessfully) in North Korea.

It is worth noting that Stuxnet was developed not only in the US but also in Israel and much of Microsoft’s software development for ‘security’ is also done in Israel, so it might not detect Stuxnet (by design).

“Imagine the media reaction if some nation’s government tried to install viruses in nuclear facilities in the US…”News from North Korea should remind any nation with military facilities (that’s about every nation on Earth) to dodge Microsoft Windows. Turkey, for instance, reportedly moved its army to GNU/Linux and several other nations make similar moves for security reasons. In order to explain North Korea’s resistance to the infection some corporation media likes to highlight “near-complete isolation” (see below) rather than reliance on GNU/Linux. The ToryGraph (see below) calls Stuxnet a “computer virus” even through it is uniquely a Microsoft Windows virus. Imagine the media reaction if some nation’s government tried to install viruses in nuclear facilities in the US…

This is by no means defence of North Korea; it’s just that the story makes is abundantly clear that, Microsoft’s special relationship with the NSA aside, Windows is a target. Even Western governments target it. The NSA habitually said that it worried about attacks on its electric grid while hypocritically enough it is attacking nuclear facilities in other countries, never mind the risk of “blowback” or the “fallout” (pun intended) such aggressive actions may consequently bring. Pentagon would label this an “act of [cyber] war”.

Related/contextual items from the news:

  1. NSA eggheads tried to bork Nork nukes with Stuxnet. It failed – report

    The NSA tried to wreck North Korea’s nuclear weapons lab using the centrifuge-knackering malware Stuxnet, and ultimately failed, multiple intelligence sources claim.

  2. Pyongyang 1, NSA 0: U.S. Tried and Failed to Hack North Korea’s Nuclear Infrastructure

    By almost completely shutting itself off from the rest of the world, the North Korean government has denied its people and society access to the fruits of the digital communications revolution. It has also reportedly helped stymie a U.S. cyberattack on the country’s nuclear infrastructure modeled on the so-called Stuxnet virus the United States and Israel used against Iranian centrifuges.

  3. The NSA reportedly tried — but failed — to use a Stuxnet variant against North Korea

    Right around the time that the Stuxnet attack so famously sabotaged Iran’s nuclear program in 2009 and 2010, the U.S. National Security Agency reportedly was trying something similar against North Korea.

    The NSA-led U.S. effort used a version of the Stuxnet virus designed to be activated by Korean-language computer settings, but it ultimately failed to sabotage North Korea’s nuclear weapons program, according to a Friday Reuters report, which attributed the information to people familiar with the campaign.

  4. NSA tried Stuxnet cyber-attack on North Korea five years ago but failed

    The US tried to deploy a version of the Stuxnet computer virus to attack North Korea’s nuclear weapons programme five years ago but ultimately failed, according to people familiar with the covert campaign.

  5. Report: US tried Stuxnet variant on N. Korean nuke program, failed
  6. US tried to bring down North Korean missile programme with computer virus
  7. Report: U.S. failed to sabotage North Korean nuclear program with Stuxnet-twin
  8. Report: US cyberattack on North Korea was ineffective
  9. Why Did a US Cyber Attack on North Korea Fail?
  10. US Tried, Failed To Sabotage North Korea Nuclear Weapons Program With Stuxnet-Style Cyber Attack
  11. US Reportedly Launched Stuxnet Attack Against North Korea
  12. US Failed at Planting Stuxnet-Style Computer Bug in N. Korea Nuke Program
  13. US reportedly tried to destroy North Korea’s nuclear program with a Stuxnet-type virus
Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Under Distributed Denial of Service Attacks Lately, But We're Too Robust For Those

    Efforts to take Techrights offline have been ramped up lately; but it's not working and it hardly even distracts us from publishing



  2. The Art of Giving: Why Free Software Will Inevitably Survive Attacks Against It

    Societies that share and look after their peers/neighbours will always be better off than predatory societies, which breed exploitation, distrust, discord and eventually systemic collapse



  3. 'Journalism' in 2020: Far More Articles About What Computer Linus Torvalds Bought Than About Linux Releases

    Yesterday's (or late Sunday's) Linux announcement (RC7) is symptomatic of a broader issue we've long spoken about; it restricts people's ability to express an opinion, which can cloud any meritorious and substantial debate about technical matters journalists cannot grasp or comment on (it takes more effort and research)



  4. Links 25/5/2020: Wrapland Redone, DebConf20 Plans, Many More Games

    Links for the day



  5. Media Covers WSL Like People Actually Use This Trash (a Failed Distro Which Only Works With Windows)

    Lots of abundantly redundant puff pieces have appeared in paid-for (by Microsoft) media this past week covering WSL/2, but that's grossly disproportional to the people who care and actually use those types of things (because money talks, not technical substance)



  6. Working From Home on Patent Monopolies Would Lower Their Quality and Perceived Legitimacy

    The patent system wherein people grant monopolies from their sofas and bedrooms isn't helping the already-eroded perception/image of patent offices that mostly grant patents to massive multinationals (and far too many patents overall)



  7. The Attitude of António Campinos Toward Courts and Toward Justice Same as Benoît Battistelli's

    6 years down the road we're still dealing with unaccountable tyrants who laugh at the law, laugh at lawmakers and disregard law enforcers (like the Trump regime across the Atlantic)



  8. IRC Proceedings: Sunday, May 24, 2020

    IRC logs for Sunday, May 24, 2020



  9. Asking Microsoft If It Loves Linux is Like Asking Google If It's Evil

    The media keeps bombarding us with lousy, weakly-sourced messages about Microsoft regretting its stance on “Open Source” and loving “Linux” (both are lies that are very easily debunked), so journalism has an existential problem and maybe too much dependence on ad money (a form of bribery) from “Big Tech” that does “clown computing” and “apps”



  10. Features Considered Harmful

    "But the benefits of Free software, free candy and new features are all meaningless, if the user isn't in control."



  11. Free, as in “App”

    "As everyday users, we need to be able to configure our applications, and this process must/needs to be made as easy and understandable as possible."



  12. Links 25/5/2020: Linux 5.7 RC7 and TeleIRC 2.0.0

    Links for the day



  13. Links 24/5/2020: TUXEDO Computers on AMD, Ardour 6.0 is Out

    Links for the day



  14. Trust Microsoft With Everything Including Your Life

    A timely if not apt meme about the state of Windows-powered hospitals, which very often end up foreign-operated (taken over by crackers in another country)



  15. When the Response to Hospitals Being Systematically Cracked Through Microsoft Products Like Windows is... Blocking the Competition of Microsoft

    People keep dying because Microsoft Windows, poorly designed with NSA back doors in it, falls into the hands of malicious actors (sometimes overseas, sometimes using leaked tools of the NSA itself) and guess who takes the blame when hospitals grind to a halt due to this…



  16. IRC Proceedings: Saturday, May 23, 2020

    IRC logs for Saturday, May 23, 2020



  17. Ode to the 'Orange One'

    Bush Senior and Junior, Hillary/Bill Clinton and now António Battistelli (or Benoît Campinos); are we dealing with monarchies/monarchs and pledges of allegiance or with public institutions beholden to the public, to be governed by the law?



  18. Home Working at the EPO: Your Corporate, Global Monopolies Will Be Rubber-stamped From Private Homes

    We’re expected to believe that EPO employees working under the noses of Microsoft (in another continent!) with kids running around will be able to be both productive and professional; staff already complains about working until midnight and beyond, without any conceivable separation between career and personal life



  19. To Understand Why “Inner Source” is a Cheap Corporate Ploy if Not a Free Software-Hostile 'Scam' Look Who's Behind It

    It's rather easy to see that the O'Reilly-connected and Bill Gates-connected leadership of InnerSource Commons (ISC) doesn't register this fake 'charity' to promote Software Freedom but to fight against it under the guise of "open" (openwashing)



  20. Microsoft: We Were Wrong About Open Source and That's Why We 'Liberate' Code... From 1983 (and We Won't Accept Code Changes, Either!)

    The tiresome openwashing efforts from Microsoft verge on the farcical, but the Microsoft-funded media plays along with it all regardless



  21. The Unitary Patent and Unified Patent Court Book

    The Unified Patent Court (UPC) propaganda must be confronted; there's a book in the making about UPC lies and the anatomy of this legislative coup attempt by litigation fanatics (who profit from monopolies, patent trolls and so on)



  22. Links 23/5/2020: Oracle Solaris 11.4 SRU21, Wine-Staging 5.9

    Links for the day



  23. Spillover: Team UPC Trying to Fill Up the Cup 'Half Empty'

    The European Patent Office's (EPO) corruption is mirrored in UPC corruption; the former hasn't yet seen its downfall due to this corruption and the latter is already up in flames, no matter how media sites (are paid to) spin it, giving false hope for the sake of lobbying by Team UPC



  24. The EPO Continues to Publicly Brag About Granting Illegal Patents to Fake 'Production' (It's Not Really Production But Abuse of the Granting Authority)

    Patents on life, nature and mathematics serve to highlight the degree of corruption embraced by EPO management, eager to fake ‘production’ in order to hoard money, which is then stolen and misused in other ways



  25. GNOME Settlement With Patent Troll Fails to Address/Tackle the Software Patent and Software Patents in General

    GNOME settles with the troll on terms that are superficially friendly towards Free software; however, more could be done to actually defuse matters on legal if not precedential grounds



  26. IRC Proceedings: Friday, May 22, 2020

    IRC logs for Friday, May 22, 2020



  27. Fiduciary Technology: Why It's Often Impermissible to Use Microsoft (But It's Done Anyway)

    "As such and if your CTO isn’t actively moving tooling out of the Microsoft ecosystem like bailing water out of a sinking ship, then you should probably be looking for a new CTO."



  28. Links 23/5/2020: FreeBSD 11.4 RC1, Wine 5.9

    Links for the day



  29. Links 22/5/2020: App Icon Preview 2.0.0, dav1d 0.7.0, LibreOffice's New Icons

    Links for the day



  30. Freedom Is Not Possible Without Privacy

    Privacy was the subject of today's feature article; let's not forget how essential a concept it is to guard against encroachments, no matter the given excuses


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts