Skip to Content
author's profile photo Former Member
Former Member

Stuxnet - most sophisticated piece of malware in history?

Hi guys

This is not directly about SAP NW security. But if you are into security you will have heard of Stuxnet, here is some info for those who haven't:

[Wikipedia -Stuxnet|http://en.wikipedia.org/wiki/Stuxnet]

Stuxnet is a Windows-specific computer worm first discovered in June 2010 by VirusBlokAda, a security firm based in Belarus. It is the first discovered worm that spies on and reprograms industrial systems...

Furthermore, the worm's probable target has been said to have been high value infrastructures in Iran using Siemens control systems. According to news reports the infestation by this worm might have damaged Iran's nuclear facilities in Natanz and eventually delayed the start up of Iran's Bushehr Nuclear Power Plant.

[Langner Communications GmbH about Stuxnet|http://www.langner.com/en/]

[Symantec - W32.Stuxnet Dossier|http://www.symantec.com/connect/de/blogs/w32stuxnet-dossier]

What do you think about it? What does this all imply for our SAP systems? What will happen when such an elaborated trojan hits RFC, unencrypted HTTP/SAPGui connections?

Obviously Stuxnet is operating on a much larger scale than any trojan targeting our systems would ever be. But on the other hand we are very soft and weak targets...

Please share your thoughts, if mods feel this should be moved to the Coffee Corner, by my guest.

Cheers Michael

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

4 Answers

  • Best Answer
    Posted on Oct 08, 2010 at 08:29 AM

    Hi Michael,

    I agree with your comment about being soft and weak targets. SAP traditionally being hidden within the depths of corporate networks has led to much of the industry being ignorant to many threats that are not from end users or complaints from auditors.

    My opinion is that Stuxnet has blown open the common argument that the relative obscurity of SAP gives it a good deal of protection. Anyone with the sophistication to target specific process control networks has the ability to do the same for SAP. As an industry we have to up our game and stop treating security as something that starts and ends with SAP roles.

    Add a comment
    10|10000 characters needed characters exceeded

  • Posted on Oct 08, 2010 at 09:36 AM

    For reasons like the one you mentioned (but also others) SAP has launched its Security Patchday on Sep 14th and also recently handed out a whitepaper on how to better secure ABAP based systems.... Some of the recommendations are rather old, but as many SAP customers have been quite reluctant to implement them this was another attempt to direct some attention to these measures on how to better protect application servers.

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Nov 29, 2010 at 07:57 AM

    [Blog on stuxnet|/people/paul.aschmann/blog/2010/10/20/how-secure-is-your-enterprise-data]

    Cheers Michael

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Jan 04, 2011 at 02:45 PM

    Thanks for the participation, i as far as i am concerned stuxnet has not arrived in the SAP ecosystem so far. Let's see where the ride goes...

    Still i can recommend the [langner blog|http://www.langner.com/en/blog/] a very interesting read.

    Keep your systems save! Best regards, Michael

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.