Skip to Content
0
Former Member
Oct 07, 2010 at 03:27 PM

Stuxnet - most sophisticated piece of malware in history?

60 Views

Hi guys

This is not directly about SAP NW security. But if you are into security you will have heard of Stuxnet, here is some info for those who haven't:

[Wikipedia -Stuxnet|http://en.wikipedia.org/wiki/Stuxnet]

Stuxnet is a Windows-specific computer worm first discovered in June 2010 by VirusBlokAda, a security firm based in Belarus. It is the first discovered worm that spies on and reprograms industrial systems...

Furthermore, the worm's probable target has been said to have been high value infrastructures in Iran using Siemens control systems. According to news reports the infestation by this worm might have damaged Iran's nuclear facilities in Natanz and eventually delayed the start up of Iran's Bushehr Nuclear Power Plant.

[Langner Communications GmbH about Stuxnet|http://www.langner.com/en/]

[Symantec - W32.Stuxnet Dossier|http://www.symantec.com/connect/de/blogs/w32stuxnet-dossier]

What do you think about it? What does this all imply for our SAP systems? What will happen when such an elaborated trojan hits RFC, unencrypted HTTP/SAPGui connections?

Obviously Stuxnet is operating on a much larger scale than any trojan targeting our systems would ever be. But on the other hand we are very soft and weak targets...

Please share your thoughts, if mods feel this should be moved to the Coffee Corner, by my guest.

Cheers Michael