News / USA

Malicious Virus Shuttered US Power Plant

Computer keyboardComputer keyboard
x
Computer keyboard
Computer keyboard
Reuters
A computer virus attacked a turbine control system at a U.S. power company last fall when a technician unknowingly inserted an infected USB computer drive into the network, keeping a plant off line for three weeks, according to a report posted on a U.S. government website.
       
The Department of Homeland Security report did not identify the plant but said criminal software, which is used to conduct financial crimes such as identity theft, was behind the incident.
       
It was introduced by an employee of a third-party contractor that does business with the utility, according to the agency.
       
DHS reported the incident, which occurred in October, along with a second involving a more sophisticated virus, on its website as cyber experts gather at a high-profile security conference in Miami known as S4 to review emerging threats against power plants, water utilities and other parts of the critical infrastructure.
       
In addition to not identifying the plants, a DHS spokesman declined to say where they are located.
       
Interest in the area has surged since 2010 when the Stuxnet computer virus was used to attack Iran's nuclear program. Although the United States and Israel were widely believed to be behind Stuxnet, experts believe that hackers may be copying the technology to develop their own viruses.
       
Justin W. Clarke, a security researcher with a firm known as Cylance that helps protect utilities against cyber attacks, noted that experts believe Stuxnet was delivered to its target in Iran via a USB drive. Attackers use that technique to place malicious software on computer systems that are ``air gapped,'' or cut off from the public Internet.
       
``This is yet another stark reminder that even if a true 'air gap' is in place on a control network, there are still ways that malicious targeted or unintentional random infection can occur,'' he said.
       
Aging Systems       

Many critical infrastructure control systems run on Windows XP and Windows 2000, operating systems that were designed more than a decade ago. They have ``auto run'' features enabled by default, which makes them an easy target for infection because malicious software loads as soon as a USB is plugged into the system unless operators change that setting, Clarke said.
       
The Department of Homeland Security's Industrial Control Systems Cyber Emergence Response Team (ICS-CERT), which helps protect critical U.S. infrastructure, described the incident in a quarterly newsletter that was accessed via its website on Wednesday.
       
The report from ICS-CERT described a second incident in which it said it had recently sent technicians to clean up computers infected by common as well as ``sophisticated'' viruses on workstations that were critical to the operations of a power generation facility.
       
The report did not say who the agency believed was behind the sophisticated virus or if it was capable of sabotage. DHS uses the term "sophisticated'' to describe a wide variety of malicious software that is designed to do things besides commit routine cyber crimes. They include viruses capable of espionage and sabotage.
       
A DHS spokesman could not immediately be reached to comment on the report.
       
The Department of Homeland Security almost never identifies critical infrastructure operators that are hit by viruses, or even their locations, but it does provide statistics.
       
It said ICS-CERT responded to 198 cyber incidents reported by energy companies, public water districts and other infrastructure facilities in the fiscal year ending Sept. 30, 2012.
       
Attacks against the energy sector represented 41 percent of the total number of incidents in fiscal 2012. According to the report, ICS-CERT helped 23 oil and natural gas sector organizations after they were hit by a targeted spear-phishing campaign - when emails with malicious content are specifically targeted at their employees.
       
The water sector had the second highest number of incidents,
 representing 15 percent.

You May Like

Changing Under Pressure, IS ‘Potent’ as Ever

US intel officials describe Ramadi's fall as concerning, but say it isn't emblematic of larger effort to degrade IS capabilities More

Nigeria Fuel Shortage Shows Fragility of Africa’s Oil Giant

Although it is the largest oil producer in Africa, country has nearly ran out of fuel it needs to power its generators, cars and airplanes over the past week More

Arrested Football Officials Come Mainly From the Americas

US Justice Department alleges defendants participated in 24-year scheme to enrich themselves through corruption of international soccer More

This forum has been closed.
Comment Sorting
Comments
     
by: Timur Tyncherov
January 23, 2013 9:50 AM
Laugh and cry at the same time. Any half-competent sysadmin would not allow the auto-run feature to be enabled on the control network of a critical infrastructure facility. And any competent sysadmin would set up the access rights in a way that prevents “an employee of a third-party contractor” from running the malicious software on a critical workstation. And yes, it IS possible even on Windows XP/2000.

by: Christopher Hobe Morrison from: Pine Bush, NY, USA
January 16, 2013 9:39 PM
Uhhhh, computers not connected to the internet to prevent them from being infected, and somebody inserted an infected USB into the computer?

Didn't somebody run a check on something that was going to be used like that? Are outside people allowed to do things that might result in that sort of thing happening?

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
3D Printer Makes Replica of Iconic Sports Cari
|| 0:00:00
...    
🔇
X
George Putic
May 27, 2015 9:31 PM
Cars with parts made by 3D printers are already on the road, but engineers are still learning about this new technology. While testing the possibility of printing an entire car, researchers at the U.S. Department of Energy recently created an electric-powered replica of an iconic sports roadster. VOA’s George Putic has more.
Video

Video 3D Printer Makes Replica of Iconic Sports Car

Cars with parts made by 3D printers are already on the road, but engineers are still learning about this new technology. While testing the possibility of printing an entire car, researchers at the U.S. Department of Energy recently created an electric-powered replica of an iconic sports roadster. VOA’s George Putic has more.
Video

Video US Voters Seek Answers From Presidential Candidates on IS Gains

The growth of the Islamic State militant group in Iraq and Syria comes as the 2016 U.S. presidential campaign kicks off in the Midwest state of Iowa.   As VOA’s Kane Farabaugh reports, voters want to know how the candidates would handle recent militant gains in the Middle East.
Video

Video A Small Oasis on Kabul's Outskirts Provides Relief From Security Tensions

When people in Kabul want to get away from the city and relax, many choose Qargha Lake, a small resort on the outskirts of Kabul. Ayesha Tanzeem visited and talked with people about the precious oasis.
Video

Video Film Festival Looks at Indigenous Peoples, Culture Conflict

A recent Los Angeles film festival highlighted the plight of people caught between two cultures. Mike O'Sullivan has more on the the Garifuna International Film Festival, a Los Angeles forum created by a woman from Central America who wants the world to know more about her culture.
Video

Video Kenyans Lament Losing Sons to al-Shabab

There is agony, fear and lost hope in the Kenyan town of Isiolo, a key target of a new al-Shabab recruitment drive. VOA's Mohammed Yusuf visits Isiolo to speak with families and at least one man who says he was a recruiter.
Video

Video Scientists Say Plankton More Important Than Previously Thought

Tiny ocean creatures called plankton are mostly thought of as food for whales and other large marine animals, but a four-year global study discovered, among other things, that plankton are a major source of oxygen on our planet. VOA’s George Putic reports.
Video

Video US-led Coalition Gives Some Weapons to Iraqi Troops

In a video released Tuesday from the Iraqi Ministry of Defense, Iraqi forces and U.S.-led coalition troops survey a cache of weapons supplied to help Iraq liberate Mosul from Islamic State group. According to a statement provided with the video, the ministry and the U.S.-led coaltion troops have started ''supplying the 16th army division with medium and light weapons in preparation to liberate Mosul and nearby areas from Da'esh (Arabic acronym for Islamic State group).''
Video

Video Amnesty International: 'Overwhelming Evidence' of War Crimes in Ukraine

Human rights group Amnesty International says there is overwhelming evidence of ongoing war crimes in Ukraine, despite a tentative cease-fire with pro-Russian rebels. Researchers interviewed more than 30 prisoners from both sides of the conflict and all but one said they were tortured. Henry Ridgwell reports for VOA from London.
Video

Video Washington Parade Honors Those Killed Serving in US Military

Every year, on the last Monday in the month of May, millions of Americans honor the memories of those killed while serving in the armed forces. Memorial Day is a tradition that dates back to the 19th Century. While many people celebrate the federal holiday with a barbecue and a day off from work, for those who’ve served in the military, it’s a special day to remember those who made the ultimate sacrifice. Arash Arabasadi reports for VOA from Washington.
Video

Video Kenya’s Capital Sees Rise in Shisha Parlors

In Kenya, the smoking of shisha, a type of flavored tobacco, is the latest craze. Patrons are flocking to shisha parlors to smoke and socialize. But the practice can be addictive and harmful, though many dabblers may not realize the dangers, according to a new review. Lenny Ruvaga has more on the story for VOA from Nairobi, Kenya.
Video

Video Rolling Thunder Run Reveals Changed Attitudes Towards Vietnam War

For many US war veterans, the Memorial Day holiday is an opportunity to look back at a divisive conflict in the nation’s history and to remember those who did not make it home.
Video

Video Female American Soldiers: Healing Through Filmmaking

According to the United States Defense Department, there are more than 200-thousand women serving in the U.S. Armed Forces.  Like their male counterparts, females have experiences that can be very traumatic.  VOA's Bernard Shusman tells us about a program that is helping some American women in the military heal through filmmaking.

VOA Blogs