Beyond Stuxnet

Looks like someone, and I’m guessing it’s not the Anonymous script kiddies, is getting ready to open a serious can of cyberwarfare whoop ass on someone.

W32.Duqu: The Precursor to the Next Stuxnet

On October 14, 2011, a research lab with strong international connections alerted us to a sample that appeared to be very similar to Stuxnet. They named the threat “Duqu” [dyü-kyü] because it creates files with the file name prefix “~DQ”. The research lab provided us with samples recovered from computer systems located in Europe, as well as a detailed report with their initial findings, including analysis comparing the threat to Stuxnet, which we were able to confirm. Parts of Duqu are nearly identical to Stuxnet, but with a completely different purpose.

Duqu is essentially the precursor to a future Stuxnet-like attack. The threat was written by the same authors (or those that have access to the Stuxnet source code) and appears to have been created since the last Stuxnet file was recovered. Duqu’s purpose is to gather intelligence data and assets from entities, such as industrial control system manufacturers, in order to more easily conduct a future attack against another third party. The attackers are looking for information such as design documents that could help them mount a future attack on an industrial control facility.

Duqu does not contain any code related to industrial control systems and is primarily a remote access Trojan (RAT). The threat does not self-replicate. Our telemetry shows the threat was highly targeted toward a limited number of organizations for their specific assets. However, it’s possible that other attacks are being conducted against other organizations in a similar manner with currently undetected variants.

See also:
Son of Stuxnet Found in the Wild on Systems in Europe
Duqu May Have Targeted Certificate Authorities for Encryption Keys
Stuxnet Clone ‘Duqu’: The Hydrogen Bomb of Cyberwarfare?
“Son of Stuxnet” Virus Uncovered
New virus a cyber ‘attack in the making’
Cyberattack forecast after spy virus found
Stuxnet successor on the loose?
Brace for “son of Stuxnet” — Duqu spies on SCADA
Duqu: Son of Stuxnet?
Symantec, McAfee differ on Duqu threat
Who’s behind worm Duqu, ‘son of Stuxnet’?
Stuxnet-based cyber espionage virus targets European firms
Key European Nuclear Firms Attacked By Variation On Stuxnet Virus

A couple of conclusions come to mind. First, the fact that Duqu is based on Stuxnet and the Stuxnet source code has never been released makes it a sure bet that the authors are one in the same, namely Israel and/or the United States, Second, the fact that Duqu is clandestinely collecting information from European manufacturers of industrial control system software, specifically software that controls nuclear facilities, strongly suggests that the eventual primary target of the apparent pending cyberattack will, once again, be Iran’s nuclear program.

/in other words, Duqu is setting up a cyberassault that will hopefully finish, once and for all, the job that Stuxnet so effectively started, halting Iran’s quest for a nuclear weapon in its tracks without having to bomb the [expletive deleted] out of their nuclear facilities

Advertisements

Space Exploration In The Age Of Obama

Now that Obama has canceled the Constellation program and scrapped NASA’s plans to return to the Moon, NASA has been reduced to pretending to explore space, you know, when their not busy fulfilling their new prime directive of reaching out to Muslims.

NASA releases videogame, Moonbase Alpha

NASA has abandoned plans to return to the Moon but videogamers can explore the lunar landscape with a free new online game released by the US space agency.

“Moonbase Alpha” allows players to join an exploration team in a futuristic 3D settlement on the south pole of the Moon.

“In Moonbase Alpha, you assume the exciting role of an astronaut working to further human expansion and research,” NASA said in an explanation of the game.

“Returning from a research expedition, you witness a meteorite impact that cripples the life support capability of the settlement.

“With precious minutes ticking away, you and your team must repair and replace equipment in order to restore the oxygen production to the settlement,” NASA said

To accomplish their mission, players of the “first-person explorer” game use an interactive command center, lunar rover and mobile robotic repair units.

“Proper use and optimal allocation of their available resources are key to the team’s overall success,” NASA said.

NASA said the game is designed to “engage and educate students about agency technologies, job opportunities and the future of space exploration.”

Moonbase Alpha can be played by one or up to six players. NASA said it is a precursor to a planned NASA-based “multiplayer online game project.”

See also:
NASA releases free-to-play online game
New NASA Game Hands Over Keys to Virtual Moonbase
Game review: Virtual lunar life on NASA’s ‘Moonbase’
NASA releases videogame, Moonbase Alpha
NASA goes Lunar with online video game
NASA releases new online videogame about a lunar adventure
NASA Moonbase Alpha Now Available On Steam
Does a moonbase make for a good video game?
Moonbase Alpha Overview
Download Moonbase Alpha from STEAM

NASA, the once great symbol of American science and technology, relegated to making video games and reaching out to Muslims, anything except for the purpose it was created for, space exploration.

/what a shame, how the mighty have fallen