"That virus focused on specific software implementations, together with those software implementations did be inwards to a greater extent than or less U.S. infrastructure," Greg Schaffer, the department's assistant secretarial assistant for cybersecurity together with communications, told reporters at a breakfast Mon morning. "So, at that spot was the potential for to a greater extent than or less U.S. infrastructure.to last impacted at to a greater extent than or less level."
Schaffer described Stuxnet every bit a "very tiered, complex together with sophisticated virus" that has attracted worldwide attending because it real specifically targeted supervisory command together with information acquisition, or SCADA, systems at Siemens plants, including inwards Iran. Experts bring said that the terms together with manpower required to practise such a virus look to signal that a government, rather than a rogue hacker or criminal gang, was behind the virus' creation.
Still, Schaffer downplayed the overall threat of Stuxnet inside the United States. "There was to a greater extent than or less risk, because those software packages be inside the U.S. ecosystem," he said. "But it's non clear at that spot are whatever detail procedure inside the the States that would bring triggered the software."
Despite widespread speculation that Stuxnet was created to target Iran's Bushehr nuclear plant, at that spot has been picayune corporation show to dorsum upwards that claim. Bruce Schneier is amid the safety experts who bring expressed skepticism, pointing to show that Stuxnet had spread to other countries, similar India. "By allowing Stuxnet to spread globally, its authors committed collateral impairment worldwide," Schneier wrote. "From a unusual policy perspective, that seems dumb."
That Stuxnet may non bring meant to target U.S. systems doesn't hateful that facilities inwards the the States are prophylactic from the virus. "One of the tricks nigh whatever slice of malware is it doesn't necessarily remain inwards the cast inwards which it was released," Schaffer said, noting that such software tin move last manipulated past times others every bit it spreads.
He declined, however, to speculate on who or what was the master target of Stuxnet.
Even if Stuxnet wasn't targeting U.S. infrastructure, its creation signifies a novel moving ridge of cyberattacks -- viruses together with malware that are designed to assault infrastructure, such every bit power-generating facilities. "This is no longer a basis where malicious defacements of Web pages is what nosotros are focused on every bit a subdivision or government," Schaffer said. "We are worried nigh to a greater extent than sophisticated attacks; nosotros are worried nigh migration to things of value."
Stuxnet, Shaffer says, is but to a greater extent than show of such attacks targeting physical infrastructure.
"Those," he said, "are the kinds of things that laissez passer on us pause."
Share This :
comment 0 Comments
more_vert