This activity will investigate a case study of the famous Stuxnet malware. It is well documented and represents a milestone in malware history as the first widely reported instance of malware “weaponized” by one nation-state against critical infrastructure in another nation-state. Highly complex and sophisticated, it took several months for security analysts to understand the operation and significance of Stuxnet. Even if the reports are not entirely true, the widespread belief that Stuxnet was intended to sabotage the Natanz uranium enrichment plant has stimulated plans among leading countries to build up their offensive and defensive cyber capabilities.
Please refer to the textbook and online resources to research about Stuxnet. Here are some suggested online references:
- Sanger, D. E. (2012, June 01). Obama order sped up wave of cyberattacks against Iran (Links to an external site.). New York Times.
- Zetter, K. (2011, July 11). How digital detectives deciphered Stuxnet, the most menacing malware in history (Links to an external site.). Wired.
- Falliere, N., Murchu, L. O., & Chien, E. (2011, February). W32.Stuxnet Dossier version 1.4 [PDF File size 4.1MB]. Symantec.
Write a 2 to 3 page report addressing the following questions:
- Unlike typical malware, Stuxnet seemed to be intended for a very specific target. What was the reported target?
- Stuxnet payload puzzled some security analysts because it was aimed at programmable logic controllers (PLCs). What did the payload attempt to do in PLCs?
- What exploits were packaged in Stuxnet to enable it to spread to its target?
Please use 2 to 3 outside resources to support your answers.
Do you need urgent help with this or a similar assignment? We got you. Simply place your order and leave the rest to our experts.