Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • IT Management
    • Networking

    New Stuxnet Details May Shed Light on True Target

    By
    Brian Prince
    -
    November 15, 2010
    Share
    Facebook
    Twitter
    Linkedin

      Researchers at Symantec say they have made a breakthrough in deciphering another piece of Stuxnet’s puzzle – the disruption of motors at nuclear power plants.

      Stuxnet – which is considered by some to be one of the most sophisticated pieces of malware ever seen – was first uncovered by the security community this summer. In the ensuing months, speculation has run rampant about who created the malware and what exactly it was designed to do.

      “Since our discovery that Stuxnet actually modifies code on PLCs (programmable logic controllers) in a potential act of sabotage, we have been unable to determine what the exact purpose of Stuxnet is and what its target was,” blogged Eric Chien, technical director of Symantec Security Response. “However, we can now confirm that Stuxnet requires the industrial control system to have frequency converter drives from at least one of two specific vendors, one headquartered in Finland and the other in Tehran, Iran. This is in addition to the previous requirements we discussed of a S7-300 CPU and a CP-342-5 Profibus communications module.”

      A frequency converter drive controls the frequency of electrical power supplied to a motor, thereby controlling the motor’s speed.

      Stuxnet, Chien explained, looks for frequency converter drives operating at high speeds, between 807 Hz and 1210 Hz. These speeds are only used in a limited number of applications – in fact, Chien wrote, low-harmonic frequency converter drives that output more than 600 Hz are regulated for export in the U.S. by the Nuclear Regulatory Commission because they can be used for uranium enrichment.

      The prospect that nuclear facilities could be Stuxnet’s main target arguably gives more weight to speculation that its purpose was to prevent either a certain country or certain countries from developing nuclear weapons.

      “Interfering with the speed of the motors sabotages the normal operation of the industrial control process…Once operation at those frequencies occurs for a period of time, Stuxnet then hijacks the PLC code and begins modifying the behavior of the frequency converter drives,” he blogged. “In addition to other parameters, over a period of months, Stuxnet changes the output frequency for short periods of time to 1410Hz and then to 2Hz and then to 1064Hz. Modification of the output frequency essentially sabotages the automation system from operating properly. Other parameter changes may also cause unexpected effects.”

      Much of the speculation has centered on Iran as the primary target, as the country has been the site of many Stuxnet infections. Additionally, Iran’s first nuclear power plant is reportedly expected to start feeding the country’s power grid by late December. Hidden within Stuxnet’s code some say are clues pointing to state-sponsorship, but many researchers have pointed out that the evidence is far from conclusive.

      Chien credited a Dutch Profibus expert as having played an important role in the breakthrough and asked for more outside help in examining Stuxnet.

      “We would be interested in hearing what other applications use frequency converter drives at these frequencies…Since we are far from experts in industrial control systems, we appreciate any feedback or further tips or explanation of some of the data,” he wrote.

      Brian Prince
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×