Getting to Know Stuxnet

While monitoring the malware feeds today someone rehashed an article that described how Stuxnet had been deciphered by InfoSec professionals back in 2011. Although the article is exceptionally long, for InfoSec types its very interesting and informative.

If you have any inclination to better understand how malware works this is an excellent article.

What I found most intriguing was how it made use of three zero days that allowed it to go as long as it did without being detected; vulnerabilities that allowed it to infect 100’s of thousands of computers by using thumb-drives and local area networks. You would think it’d be such an ineffective approach with things like the web that allows you to mass compromised so many more.

Cheers.