Sites:
Home > Technical Library > Manufacturing and Process Equipment > Industrial Machine Safeguarding > Post-Stuxnet Industrial Security: Zero-Day Discovery and Risk Containment of Industrial Malware (.pdf)

Post-Stuxnet Industrial Security: Zero-Day Discovery and Risk Containment of Industrial Malware

From PHOENIX CONTACT USA

Following its discovery in June 2010, the Stuxnet worm caused a worldwide sensation. It is the first publicly known rootkit attack targeted at industrial plants. It has infected tens of thousands of PCs, and abused and manipulated automation software running on Windows® operating systems. Its ultimate purpose: to infiltrate malicious code into the controllers of specific real-world industrial installations.

Experts have long warned that malware and insufficient IT security pose a threat to automation networks, but Stuxnet offers concrete proof that these threats can no longer be ignored. The actual hazard, however, no longer originates from Stuxnet itself, but rather comes from mutations that copycats can now create with the same basic techniques. And while Stuxnet focused on products from the Siemens SIMATIC family and on STEP 7 PLC projects with very specific properties, such mutations could affect components from other vendors as well, ultimately turning out malware a lot less selective in its damaging impact.

Read the Whole Article
Products & Services
Two Hand Safety Modules
Two hand safety modules help prevent injury to machine operators by keeping their limbs away from dangerous machine movement.
Safety Relays
Safety relays and control modules differ from conventional relays in that they have force-guided or positive-driven contacts.
Intrinsic Safety Barriers
Intrinsic safety (IS) barriers are devices that limit the current, voltage, and total energy delivered to a sensor in a hazardous area or flammable environment in order to prevent an explosion.
Product Announcements
PHOENIX CONTACT USA - Post-Stuxnet Industrial Security White paper
Preventing the next Stuxnet-like attack on the control world might be impossible, but operators can mitigate the effects and contain worms and viruses through early detection. (read more)
Cisco Systems, Inc. - Industrial Ethernet 2000 Series Additions
The newest IE 2000 additions have been designed to support access layer connectivity and to meet the increasing needs for security, voice, and video traffic across industrial networks. (read more)
Cisco Systems, Inc. - Cisco IE 3000 Switches and PROFINET
The implementation of PROFINET IO on the Cisco® Industrial Ethernet 3000 (IE 3000) Series Switches enables integration with factory management tools and provides real-time automation in modular... (read more)
 
Topics of Interest

Public health and safety depend on the availability and reliability of water systems. Cyber attacks on information technology (IT) networks are well known, but attacks on the control systems used to...

Over the last few months, we have been hearing more and more about the Stuxnet Worm. Originating in 2007, it became a topic of conversation in the main stream media after its global deployment in...

Example 5 We have analyzed nonessential and essential startups, as well as malware that installs a service and a rootkit. This time we will examine malware that uses a nontraditional startup method.

In This Chapter Types of malware Infection mechanisms Protecting yourself against malware Malware detection software Lockdown schemes 8.0 Introduction If there is...

Summary In this age of rootkits and stealth technology, use of effective system analysis tools is essential. The desire for financial gain has literally spawned an epidemic of cybercrime. Malware...