Follow Stuxi to Iran


One week later, I feel the urge to write another article on the Stuxnet worm, Stuxi. Why? Because there are a lot of rumors that it was State-backed-up and targeting Iran. Let me break it down for you.

The most interesting point it that all security companies, which examined the code and the impact of the worm conclude that high resources must have been behind the coding. The worm was using four different zero day exploits, which have not been public, yet. Gathering the knowledge and include them all in one worm needs a lot of resources, only states or large companies can provide.

Furthermore, the worm aimed at enabling remote control and not just corrupting files. Thus, and the fact that the zero day exploits would be worth an estimate of one quarter million US dollars on the black market, leads to the assumption that it was not generated for the purpose of blackmailing/ generating income.

Why should the target be Iran? The most infected computers have been found in Iran factories. Additionally, the worm was coded in a way that it can only spread to three different computers (incorporated counter and stop mechanism). This should limit the spreading of the worm. Again, someone who wants to earn money does not limit it because he does not care that it is found. It should spread fast and when it is found, the bargaining may start.

So far so good. I might repeat myself, but as I stated last week, this might be the beginning of the cyber war area. Concluding the above mentioned information, the Stuxnet worm has been a targeted, directed and state-orchestrated attack against the economic infrastructure of a particular country. Regarding the background of Iran’s international standing (especially after the UN speech of their beloved president), business espionage is highly unlikely. Maybe it was aimed to stop Iran’s development of their nuclear power scheme? My assumptions get more and more blunt, but why not play with these ideas.

I beg to disagree with all the experts who say that cyber war will only be based on economic preferences. It is and will be political, as it was in Estonia. Some head’s of state already declared that they might react with the use of nuclear weapons as retaliation opposing a cyber attack.

Isn’t it funny that the Internet has created to secure the US communications infrastructure in the event of a nuclear attack and now the Internet might be the means triggering a nuclear attack?

Leave a Reply