Abstract:
The aim of this study is to collect the
information about stuxnet worm and the old cyber war and the upcoming cyber-war
and continue cyber war. In these we study about the cyber-attack of stuxnet
worm. In this we analyze
What is the cyber war? And what is the scope
of cyber war in the future and in old age era?
What is Stuxnet worm?
What is aim of Stuxnet worm?
What kind of cyber-attack is these?
What is the purpose of stuxnet?
Damage of Stuxnet?
How Stuxnet complete his target?
Disadvantages of Stuxnet?
What circumstances happen that stuxnet enter
to attack?
Removal of Stuxnet?
Affected Countries?
Did this era is the cyber-war era? What is
the scope of the cyber-war and cyber-attack in the era of Internet?
Did this is the end of the Stuxnet or this
worm is use for attack on industry in the future?
Today cyber-war is dangerous than the atomic
and nuclear war, because the cyber experts do the destructions internally.
Stuxnet is also like these war that attacks happens suddenly and destructions is
up of our minds. Few days ago, a cyber-attack implement on Pakistan’s bank and
the loss happens up to 85 crores, this is a big loss happens to the bank.
Let’s study the above questions??
Introduction:
Cyber-war caused many damages in
many countries, and many of the countries is not ready or prepared for this
attack. Like these, cyber experts and hackers use hacking tricks and viruses
for the attacks on firms, industry, foundation and banks. Mostly in these days
cyber is use for making money now a days, hackers use their tricks for making
or stooling money, but if we keep an eye on stuxnet attack, it happens on Iran
nuclear or Uranium enrichment equipment. Basically, Stuxnet is a Malware that
is designed for attack to target industrial controller. Cyber is the major
issue of the internet era.
The
scope of the cyber is the old age is none, because in those days, the
cyber-attacks is happen only on the countries based projects , but now a days
the cyber-attack is happen for making money
and targeting the peoples from one place to home to home and torching
the people and make money in way of killing people.
What
is Stuxnet?
Stuxnet
is a malicious software program that enter to your computer system slowly and
slowly and also have safeguard to limit his spread.it infected three components
from a given flash drive and is hardcoded to stop spreading .It makes four 0-days vulnerability in an
application. It uses rootkits to
hide itself from the anti-malware applications or programs and enter any drivers.
Stuxnet modify the system libraries, attacking step
7 installation and running an RPC server
to installing the signed drivers on Windows operating system. It allows it to
infect the PLC’s it target. It can be auto update, so it can update the old
version to new version on a local network. It communicate with command and
control server to provide the information to its spread to its creator and also
provide another way for it to be updated. It don’t allow to trace its absence
in the operating system and the source of its destructive effects and show all
proper working of the source or operating system.
It works through its flash drives the
ultimate destination in the computer that control the electronics devices and
Industrial control called PLCs. PLCs are connected to the computer that controls and monitor them,
and typically neither are connected with internet. So stuxnet need another
vector to reach those computers and that provides the PLCs to stuxnet.
It uses LNK
vulnerability and autorun.inf to
attacks on windows. The malware main module both consist of user mode and
kernel components.
Aim
of Stuxnet?
As
we study that stuxnet is discovered for some attacks. Stuxnet is discovered for
attacking the Iran’s nuclear production in Natanz
Purpose
of Stuxnet?
The
purpose of Stuxnet is to attack the Iran’s nuclear plant and enter to their
computer and destroy their centrifuges and decrease the production of uranium
of the Iran’s nuclear plant.
What Kind of attack is these?
This
is political country to country based cyber-attack that is held to stop Iran
making of uranium and nuclear plants. This cyber is attacked by the Israel and USA because both are the enemy of Iran. Assuming that the Stuxnet damaged their Nuclear weapon program.
Damage of Stuxnet?
It
damages the Iran nuclear weapons programs and estimate that it damages the 1000 centrifuges .So by damaging or
destroy of centrifuges , it decrease the production of Uranium.
Stuxnet Complete his attack?
Stuxnet
is a slow attacking cyber worm attack. When the president lounge the C&C website and upload the pictures
of the nuclear plant, then the creator or attacker attack through these, this
is the entering place or gateway of attacking or entering in the computers or
plant personnel. Stuxnet has digital certificates that tries to enter in the
computer from the websites.
The digital certificates provides help to
avoid Suspicion. Stuxnet enter from website and then reaches to the plant
personnel, and from that it approaches the control computers that control the
centrifuges. Stuxnet is a slow attacking malware and it not shows his presence
in the computer and change the different ways of working that the anti-malware
program don’t kept him. Then the PLCs
(Programming Logic control) work starts, malware enter in these and giving
commands to PLCs to works the centrifuges in opposite direction. It gave
information to the creators through command and control server. It Changes
different methods for making space in it. It uses DLL or Kernel mode and Step7 program in it.
Disadvantages:
·
The main disadvantage of Stuxnet is that any
coder or programmer make easy changes in the malicious program and attack to
the first attacker.
·
It only use for main attack on industry or
big Cyber-attack, not for small attack.
·
This is slow Malware program.
Removal of Stuxnet:
·
Immediately upgrading password access codes
·
Installing windows updates for security
vulnerability and prohibiting the use of third party.
Affected Countries:
|
Country
|
Share of infected Computer
|
|
Iran
|
58.85%
|
|
Indonesia
|
18.22%
|
|
India
|
8.31%
|
|
Azerbaijan
|
2.57%
|
|
United States
|
1.56%
|
|
Pakistan
|
1.28%
|
Did Stuxnet used again if future for cyber-attack?
Yes,
it can be happen if we don’t take attention on cyber-crimes, then these
cyber-crime can be converted into cyber-war. This attack happen due to some mistake,
we have to aware peoples of cyber and make strength of cyber security experts
in the agencies.
Old Cyber Era:
Old
cyber era is not like continuing era, people use hacking or cyber or malware
program for normal use or simple cheating the people.
New Cyber Era;
If
we keep an eye on the modern era of cyber then it’s not a simple word cyber its
call cyber-crime. Through the cyber countries attack on the other countries and
terrorism ratio is going up and what is happen by the Iran Nuclear project and the
last few days we see in Pakistan banks
attacks by cyber experts , this era is called Cyber-Crime era the future
era is coming to going to be cyber –war era . Mostly of the countries is making
their soldiers of cyber experts because the next war is cyber war which is
started by terrorism which you see now a days..
