Silver Bullet 59: Ralph Langner on Stuxnet

[Gary McGraw <gem () cigital com>]

hi sc-l,

I met Silver Bullet #59 victim Ralph Langner at Joe Weiss's Applied Control Solutions Conference 
<http://realtimeacs.com/?page_id=65> in Rockville last Fall.  That was when (much to the surprise of the Siemens guys 
there) Ralph first revealed that the Stuxnet payload was aimed directly at physical control systems.  In some sense, 
Stuxnet has changed the world by showing in no uncertain terms just how vulnerable control systems are.

Ralph has spent plenty of time analyzing the Stuxnet payload and we get into some detail regarding its technical 
workings during the podcast.  Have a listen:  http://www.cigital.com/silverbullet/show-059/

If you ever wondered what a cyber war weapon might look like, Stuxnet is it.  It is obvious that Stuxnet was 
specifically constructed as a targeted attack against the Natanz nuclear centrifuges in Iran.

As always, your feedback on the podcast is welcome.

gem

company www.cigital.com
blog www.cigital.com/justiceleague
book www.swsec.com

_______________________________________________
Secure Coding mailing list (SC-L) SC-L () securecoding org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
Follow KRvW Associates on Twitter at: http://twitter.com/KRvW_Associates
_______________________________________________