News / USA

    Malicious Virus Shuttered US Power Plant

    Computer keyboard Computer keyboard
    x
    Computer keyboard
    Computer keyboard
    Reuters
    A computer virus attacked a turbine control system at a U.S. power company last fall when a technician unknowingly inserted an infected USB computer drive into the network, keeping a plant off line for three weeks, according to a report posted on a U.S. government website.
           
    The Department of Homeland Security report did not identify the plant but said criminal software, which is used to conduct financial crimes such as identity theft, was behind the incident.
           
    It was introduced by an employee of a third-party contractor that does business with the utility, according to the agency.
           
    DHS reported the incident, which occurred in October, along with a second involving a more sophisticated virus, on its website as cyber experts gather at a high-profile security conference in Miami known as S4 to review emerging threats against power plants, water utilities and other parts of the critical infrastructure.
           
    In addition to not identifying the plants, a DHS spokesman declined to say where they are located.
           
    Interest in the area has surged since 2010 when the Stuxnet computer virus was used to attack Iran's nuclear program. Although the United States and Israel were widely believed to be behind Stuxnet, experts believe that hackers may be copying the technology to develop their own viruses.
           
    Justin W. Clarke, a security researcher with a firm known as Cylance that helps protect utilities against cyber attacks, noted that experts believe Stuxnet was delivered to its target in Iran via a USB drive. Attackers use that technique to place malicious software on computer systems that are ``air gapped,'' or cut off from the public Internet.
           
    ``This is yet another stark reminder that even if a true 'air gap' is in place on a control network, there are still ways that malicious targeted or unintentional random infection can occur,'' he said.
           
    Aging Systems       

    Many critical infrastructure control systems run on Windows XP and Windows 2000, operating systems that were designed more than a decade ago. They have ``auto run'' features enabled by default, which makes them an easy target for infection because malicious software loads as soon as a USB is plugged into the system unless operators change that setting, Clarke said.
           
    The Department of Homeland Security's Industrial Control Systems Cyber Emergence Response Team (ICS-CERT), which helps protect critical U.S. infrastructure, described the incident in a quarterly newsletter that was accessed via its website on Wednesday.
           
    The report from ICS-CERT described a second incident in which it said it had recently sent technicians to clean up computers infected by common as well as ``sophisticated'' viruses on workstations that were critical to the operations of a power generation facility.
           
    The report did not say who the agency believed was behind the sophisticated virus or if it was capable of sabotage. DHS uses the term "sophisticated'' to describe a wide variety of malicious software that is designed to do things besides commit routine cyber crimes. They include viruses capable of espionage and sabotage.
           
    A DHS spokesman could not immediately be reached to comment on the report.
           
    The Department of Homeland Security almost never identifies critical infrastructure operators that are hit by viruses, or even their locations, but it does provide statistics.
           
    It said ICS-CERT responded to 198 cyber incidents reported by energy companies, public water districts and other infrastructure facilities in the fiscal year ending Sept. 30, 2012.
           
    Attacks against the energy sector represented 41 percent of the total number of incidents in fiscal 2012. According to the report, ICS-CERT helped 23 oil and natural gas sector organizations after they were hit by a targeted spear-phishing campaign - when emails with malicious content are specifically targeted at their employees.
           
    The water sector had the second highest number of incidents,
     representing 15 percent.

    You May Like

    US Lawmakers Vow to Continue Immigrant Program for Afghan Interpreters

    Congressional inaction threatens funding for effort which began in 2008 and has allowed more than 20,000 interpreters, their family members to immigrate to US

    Brexit's Impact on Russia Stirs Concern

    Some analysts see Brexit aiding Putin's plans to destabilize European politics; others note that an economically unstable Europe is not in Moscow's interests

    US to Train Cambodian Government on Combating Cybercrime

    Concerns raised over drafting of law, as critics fear cybercrime regulations could be used to restrict freedom of expression and stifle political dissent

    This forum has been closed.
    Comment Sorting
    Comments
         
    by: Timur Tyncherov
    January 23, 2013 9:50 AM
    Laugh and cry at the same time. Any half-competent sysadmin would not allow the auto-run feature to be enabled on the control network of a critical infrastructure facility. And any competent sysadmin would set up the access rights in a way that prevents “an employee of a third-party contractor” from running the malicious software on a critical workstation. And yes, it IS possible even on Windows XP/2000.

    by: Christopher Hobe Morrison from: Pine Bush, NY, USA
    January 16, 2013 9:39 PM
    Uhhhh, computers not connected to the internet to prevent them from being infected, and somebody inserted an infected USB into the computer?

    Didn't somebody run a check on something that was going to be used like that? Are outside people allowed to do things that might result in that sort of thing happening?

    Featured Videos

    Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
    Baghdad Bikers Defy War with a Roari
    X
    June 28, 2016 10:33 AM
    Baghdad is a city of contradictions. War is a constant. Explosions and kidnappings are part of daily life. But the Iraqi capital remains a thriving city, even if a little beat up. VOA's Sharon Behn reports on how some in Baghdad are defying the stereotype of a nation at war by pursuing a lifestyle known for its iconic symbols of rebellion: motorbikes, leather jackets and roaring engines.
    Video

    Video Baghdad Bikers Defy War with a Roar

    Baghdad is a city of contradictions. War is a constant. Explosions and kidnappings are part of daily life. But the Iraqi capital remains a thriving city, even if a little beat up. VOA's Sharon Behn reports on how some in Baghdad are defying the stereotype of a nation at war by pursuing a lifestyle known for its iconic symbols of rebellion: motorbikes, leather jackets and roaring engines.
    Video

    Video Melting Pot of Immigrants Working to Restore US Capitol Dome

    The American Iron Works company is one of the firms working to renovate the iconic U.S. Capitol Dome. The company employs immigrants of many different cultural and national backgrounds. VOA’s Arman Tarjimanyan has more.
    Video

    Video Testing Bamboo as Building Material

    For thousands of years various species of bamboo - one of the world's most versatile plants - have been used for diverse purposes ranging from food and medicine to textiles and construction. But its use on a large scale is hampered because it's not manufactured to specific standards but grown in the ground. A University of Pittsburgh professor is on track to changing that. VOA’s George Putic reports.
    Video

    Video Orphanage in Iraqi City Houses Kids Who Lost their Parents to Attacks by IS

    An orphanage in Iraqi Kurdistan has become home to scores of Yazidi children who lost their parents after Islamic State militants took over Sinjar in Iraq’s Nineveh Province in 2014. Iraqi Kurdish forces backed by the U.S. airstrikes have since recaptured Sinjar but the need for the care provided by the orphanage continues. VOA’s Kawa Omar filed this report narrated by Rob Raffaele.
    Video

    Video Re-Opening Old Wounds in a Bullet-Riddled Cultural Landmark

    A cultural landmark before Lebanon’s civil war transformed it into a nest of snipers, Beirut’s ‘Yellow House’ is once again set to play a crucial role in the city.  Built in a neo-Ottoman style in the 1920s, in September it is set to be re-opened as a ‘memory museum’ - its bullet-riddled walls and bunkered positions overlooking the city’s notorious ‘Green Line’ maintained for posterity. John Owens reports from Beirut.
    Video

    Video Brexit Resounds in US Presidential Contest

    Britain’s decision to leave the European Union is resounding in America’s presidential race. As VOA’s Michael Bowman reports, Republican presumptive nominee Donald Trump sees Britain’s move as an affirmation of his campaign’s core messages, while Democrat Hillary Clinton sees the episode as further evidence that Trump is unfit to be president.
    Video

    Video New York Pride March A Celebration of Life, Mourning of Loss

    At this year’s march in New York marking the end of pride week, a record-breaking crowd of LGBT activists and allies marched down Manhattan's Fifth Avenue, in what will be long remembered as a powerful display of solidarity and remembrance for the 49 victims killed two weeks ago in an Orlando gay nightclub.
    Video

    Video NASA Juno Spacecraft, Nearing Jupiter, to Shed Light on Gas Giant

    After a five-year journey, the spacecraft Juno is nearing its destination, the giant planet Jupiter, where it will enter orbit and start sending data back July 4th. As Mike O'Sullivan reports from Pasadena, California, the craft will pierce the veil of Jupiter's dense cloud cover to reveal its mysteries.
    Video

    Video Orlando Shooting Changes Debate on Gun Control

    It’s been nearly two weeks since the largest mass shooting ever in the United States. Despite public calls for tighter gun control laws, Congress is at an impasse. Democratic lawmakers resorted to a 1960s civil rights tactic to portray their frustration. VOA’s Carolyn Presutti explains how the Orlando, Florida shooting is changing the debate.
    Video

    Video Tunisian Fishing Town Searches for Jobs, Local Development Solutions

    As the European Union tries to come to grips with its migrant crisis, some newcomers are leaving voluntarily. But those returning to their home countries face an uncertain future.  Five years after Tunisia's revolution, the tiny North African country is struggling with unrest, soaring unemployment and plummeting growth. From the southern Tunisian fishing town of Zarzis, Lisa Bryant takes a look for VOA at a search for local solutions.
    Video

    Video 'American Troops' in Russia Despite Tensions

    Historic battle re-enactment is a niche hobby with a fair number of adherents in Russia where past military victories are played-up by the Kremlin as a show of national strength. But, one group of World War II re-enactors in Moscow has the rare distinction of choosing to play western ally troops. VOA's Daniel Schearf explains.
    Video

    Video Muslim American Mayor Calls for Tolerance

    Syrian-born Mohamed Khairullah describes himself as "an American mayor who happens to be Muslim." As the three-term mayor of Prospect Park, New Jersey, he believes his town of 6,000 is an example of how ethnicity and religious beliefs should not determine a community's leadership. Ramon Taylor has this report from Prospect Park.

    Special Report

    Adrift The Invisible African Diaspora