Beyond Stuxnet

Looks like someone, and I’m guessing it’s not the Anonymous script kiddies, is getting ready to open a serious can of cyberwarfare whoop ass on someone.

W32.Duqu: The Precursor to the Next Stuxnet

On October 14, 2011, a research lab with strong international connections alerted us to a sample that appeared to be very similar to Stuxnet. They named the threat “Duqu” [dyü-kyü] because it creates files with the file name prefix “~DQ”. The research lab provided us with samples recovered from computer systems located in Europe, as well as a detailed report with their initial findings, including analysis comparing the threat to Stuxnet, which we were able to confirm. Parts of Duqu are nearly identical to Stuxnet, but with a completely different purpose.

Duqu is essentially the precursor to a future Stuxnet-like attack. The threat was written by the same authors (or those that have access to the Stuxnet source code) and appears to have been created since the last Stuxnet file was recovered. Duqu’s purpose is to gather intelligence data and assets from entities, such as industrial control system manufacturers, in order to more easily conduct a future attack against another third party. The attackers are looking for information such as design documents that could help them mount a future attack on an industrial control facility.

Duqu does not contain any code related to industrial control systems and is primarily a remote access Trojan (RAT). The threat does not self-replicate. Our telemetry shows the threat was highly targeted toward a limited number of organizations for their specific assets. However, it’s possible that other attacks are being conducted against other organizations in a similar manner with currently undetected variants.

See also:
Son of Stuxnet Found in the Wild on Systems in Europe
Duqu May Have Targeted Certificate Authorities for Encryption Keys
Stuxnet Clone ‘Duqu’: The Hydrogen Bomb of Cyberwarfare?
“Son of Stuxnet” Virus Uncovered
New virus a cyber ‘attack in the making’
Cyberattack forecast after spy virus found
Stuxnet successor on the loose?
Brace for “son of Stuxnet” — Duqu spies on SCADA
Duqu: Son of Stuxnet?
Symantec, McAfee differ on Duqu threat
Who’s behind worm Duqu, ‘son of Stuxnet’?
Stuxnet-based cyber espionage virus targets European firms
Key European Nuclear Firms Attacked By Variation On Stuxnet Virus

A couple of conclusions come to mind. First, the fact that Duqu is based on Stuxnet and the Stuxnet source code has never been released makes it a sure bet that the authors are one in the same, namely Israel and/or the United States, Second, the fact that Duqu is clandestinely collecting information from European manufacturers of industrial control system software, specifically software that controls nuclear facilities, strongly suggests that the eventual primary target of the apparent pending cyberattack will, once again, be Iran’s nuclear program.

/in other words, Duqu is setting up a cyberassault that will hopefully finish, once and for all, the job that Stuxnet so effectively started, halting Iran’s quest for a nuclear weapon in its tracks without having to bomb the [expletive deleted] out of their nuclear facilities

Advertisements

Picking Up Where We Left Off

NASA may be grounded, but the Chinese are just getting warmed up.

Rocket launches Chinese space lab

A rocket carrying China’s first space laboratory, Tiangong-1, has launched from the north of the country.

The Long March vehicle lifted clear from the Jiuquan spaceport in the Gobi Desert at 21:16 local time (13:16 GMT).

The rocket’s ascent took the lab out over the Pacific, and on a path to an orbit some 350km above the Earth.

The 10.5m-long, cylindrical module will be unmanned for the time being, but the country’s astronauts, or yuhangyuans, are expected to visit it next year.

Tiangong means “heavenly palace” in Chinese.

See also:
“Heavenly Palace:” China’s dream home in space
Space flight in service of science
Tiangong-1 blasts off
China’s Space Launch Closes Gap With U.S.
China launches Heavenly Palace space station module
China launches module for space station
China launches 1st space station module
China Launches Spacecraft, Eyes Space Station
China Launches ‘Heavenly Palace-1’ Into Space; Takes Step Toward Station
China Set to Launch Its Own Space Station; Mission: Unknown
China Launches Space Lab; An Insider Look Into China Space Program
Rocket’s red glaring error: China sets space launch to America the Beautiful
Tiangong 1

Okay, so the Chinese are still quite a ways behind the U.S. space program.

/but hey, at least they have an active space program

Warp Speed?

Was Einstein wrong, can neutrinos blow through the speed of light stop sign?

Speedy Particles Put Einstein to the Test

An experiment purporting to show that subatomic particles can travel faster than light has scientists’ heads spinning. If confirmed, it would undermine key pillars of modern physics.

At a presentation in Switzerland, scientists said Friday they had recorded ghostlike particles, known as neutrinos, a tiny bit faster than light—an apparent breach of the cosmic speed limit set down by Albert Einstein more than a century ago.

. . .

Neutrinos are particles with almost no mass and no charge, and they can pass through ordinary matter unaffected. At any given moment, billions harmlessly stream through a person’s body.

In the experiment known as the Oscillation Project with Emulsion-Tracking Apparatus, neutrinos were measured as traveling slightly faster than light on a 450-mile trip from CERN near Geneva to the Gran Sasso underground lab in central Italy. The particles moved at a velocity just above the speed of light. That result was based on more than 15,000 neutrino events measured at the Italian lab, CERN said.

See also:
Measurement of the neutrino velocity with the OPERA detector in the CNGS beam
Neutrinos may have traveled faster than the speed of light
UPDATE 1-Particles found to break speed of light
Particles recorded moving faster than light – CERN
Scientists Question Faster-Than-Light Neutrinos
Light speed: Flying into fantasy
Those faster-than-light neutrinos. Four things to think about
Particles faster than light: Revolution or mistake?
CERN neutrinos don’t “disprove” Einstein
Details emerge about European scientists’ discovery
Physicists explain how neutrino beat Einstein
Challenging Einstein Is Usually A Losing Venture
Physicists wary of junking light speed limit yet
Faster Than Light Neutrinos? Don’t Bet On It
CERN – the European Organization for Nuclear Research
CERN
Welcome to LNGS – Gran Sasso National Laboratory
Laboratori Nazionali del Gran Sasso
Oscillation Project with Emulsion-tRacking Apparatus (OPERA)
OPERA experiment

Are these results science fact or science fiction? Beats me. If it is true, it’s going to turn physics as we know it on its head.

/stay tuned, this is sure to be a hot topic of scientific debate for quite some time