What is Stuxnet ? - Definition from WhatIs.com
Part of the Malware glossary:

The Stuxnet worm is a rootkit exploit that targets Supervisory Control and Data Acquisition (SCADA) systems. SCADA systems are used in power, water and sewage plants, as well as in telecommunications and oil and gas refining. 

Stuxnet contains code that can identify Siemens' SCADA software and then inject itself into the programmable logic controllers. Logic controllers automate the most critical parts of an industrial facility's processes, such as temperature, pressure, and the flow of water, chemicals and gasses. 

Stuxnet initially exploited Windows LNK files and was spread through removable storage devices, such as USB sticks. It used four previously unknown Microsoft zero-day flaws to gain access to laptops and other machines with the goal of gaining access to the network. In response, Microsoft issued two patches and experts in SCADA security created a list of formal recommendations for facilities that use SCADA systems. 

Like the Zeus banking Trojan, Stuxnet code included stolen digital certificates so the malware appeared legitimate and could avoid detection by traditional intrusion detection systems (IDS). After Stuxnet surfaced, researchers quickly began to reverse engineer the malware. It is generally believed that Stuxnet was not designed for espionage, but rather to cripple a facility's infrastructure.

This was last updated in November 2010
Posted by: Margaret Rouse

Related Terms

Definitions

  • blacklist

    - A blacklist, in IT, is a collection of entities that are blocked from communicating with or logging into a computer, site or network. Blocked entities are typically identified as IP addresses, user... (WhatIs.com)

  • mobile spyware

    - Mobile spyware is monitoring software that is installed on a mobile device without the end user's knowledge. (WhatIs.com)

  • Trojan horse

    - A Trojan horse is a program that appears harmless but is, in fact, malicious. Attackers have long used Trojan horses as a way to trick end users into installing malware. (SearchSecurity.com)

Glossaries

  • Malware

    - Terms related to malware, including definitions about viruses and Trojans and other words and phrases about malicious software.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question. Find an Answer.Powered by ITKnowledgeExchange.com

Ask An IT Question

Get answers from your peers on your most technical challenges

Ask Question
  • virus - W32.STUXNET!INK

    The best solution is, you have to download latest MWAV virus scanner (not escan), which installs just instance and scans as emergency basis. When the menu comes, select All Local Drives and again...

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.