Stuxnet: A Way to Nuke Iran without Using a Bomb?

Last week, Russian Ambassador to NATO, Dmitry Rogozin, told the organization that the computer worm Israel and the US devised to ruin Iran’s nuclear program could have led to a catastrophe with the Bushehr nuclear plant like Chernobyl.

Russia said on Wednesday that NATO should investigate last year’s computer virus attack on a Russian-built nuclear reactor in Iran, saying the incident could have triggered a nuclear disaster on the scale of Chernobyl.

[snip]

“This virus, which is very toxic, very dangerous, could have very serious implications,” he said, describing the virus’s impact as being like explosive mines.

“These ‘mines’ could lead to a new Chernobyl,” he said, referring to the 1986 nuclear accident at a plant in Ukraine, then part of the Soviet Union. “NATO should get to investigating the matter… This is not a private topic.”

At first, it seemed like the risk for such a disaster had passed. But the AP has gotten a foreign intelligence report stating that the risk of such a catastrophe remains.

… such conclusions were premature and based on the “casual assessment” of Russian and Iran scientists at Bushehr.

With control systems disabled by the virus, the reactor would have the force of a “small nuclear bomb,” it says.

Which would be rather “neat,” don’t you think? If the US and Israel were to collaborate to pioneer cyberwarfare to effective set off an explosion equivalent to that of a nuclear bomb, all without having to drop the bomb themselves? (The Bushehr reactor is apparently just 12 KM outside of the city of Bushehr, Iran’s chief seaport.)

Richard Clarke provides an explanation (assuming this was not an intentional potential side effect of the US-Israeli plot) for why Stuxnet may still be a risk, in Iran and elsewhere.

Second, the cyber agent Stuxnet was captured and successfully interrogated. That was not supposed to happen. The attack program had built in to it all sorts of collateral damage controls, including instructions to kill itself after a date certain in 2009. Those controls, most unusual in the world of hackers but common in certain countries covert action programs, failed apparently because the weapon’s designers took the collateral damage controls less seriously than they did the ingenious attack. For a hacker, attacking is always more interesting than pleasing the lawyers. Thus, after laying low the Iranian nuclear enrichment centrifuges at Natanz, the worm made its way from that plant’s supposedly isolated, internal computer network to freedom in cyberspace. Thousands of other computers in Iran were infected, as were many in countries such as Pakistan, India, Indonesia, and even a few in the United States.

[snip]

The problem lies in the fact that the worm ran freely through cyberspace and lots of people caught a copy. One can be sure that highly skilled hackers in several countries are even now taking it apart, modifying it, and getting it ready to destroy some other target. They are benefiting from free access to the most sophisticated computer attack weapon ever created. That would not be such a problem except for the fact that the thousands of computer networks that run our economy are essentially defenseless against sophisticated computer attacks.

That is, the Israeli and American hackers behind this cyberattack were no more competent than (or perhaps, just as incompetent as) the spooks that gave Iran nuclear blueprints 11 years ago.

And meanwhile, DOD won’t tell Congress about its cyberwar operations, presumably up to and including Stuxnet.

I guess maybe they’re just crossing their finger and hoping none of the easily predicted unintended consequences would come to pass?

Tweet about this on Twitter0Share on Reddit0Share on Facebook0Google+0Email to someone

0 Responses to Stuxnet: A Way to Nuke Iran without Using a Bomb?

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
Emptywheel Twitterverse
bmaz RT @ZoeTillman: Here are some of the issues the former Blackwater guards may bring up if they appeal yesterday's guilty verdicts: http://t.…
2mreplyretweetfavorite
bmaz @ggreenwald @andohehir Sure would be nice if you could get it to Phoenix.
11mreplyretweetfavorite
bmaz RT @OnIyHistory: Guinness planned to advertise in Nazi Germany during the 1936 Olympics ("It's time for a Guiness") http://t.co/D5AwTnTnmP
18mreplyretweetfavorite
bmaz @emptywheel @evanperez Also, statutes of limitation are blithely let run. So, while Holder's comment is nice, it is also total horseshit.
34mreplyretweetfavorite
bmaz @emptywheel @evanperez Making it easier would be fine. But there are already plenty of prosecution modalities; they are just being ignored.
35mreplyretweetfavorite
emptywheel .@RonWyden "ignorant abt...ways in which govt using EO 12333 to conduct overseas data collection w/o court oversight" http://t.co/0BIigEaMcD
50mreplyretweetfavorite
bmaz @michaelbkiefer Nice looking couple!
59mreplyretweetfavorite
emptywheel @wizardkitten 2012 WAS fun. Can we haz clown car again, pleez?
59mreplyretweetfavorite
emptywheel @Krhawkins5 Oh, you're right. Updating.
1hreplyretweetfavorite
emptywheel Remember when Snyder said the flood was like a hole in his lame home? Now it was devastating. https://t.co/lv7cJrkNiv
1hreplyretweetfavorite
emptywheel At least 8 pieces of evidence on torture have already disappeared/been altered. https://t.co/A4G2WfmObL Did the access logs get altered too?
1hreplyretweetfavorite
bmaz @JasonLeopold Think DOJ might have been wanting to send me anyway.
2hreplyretweetfavorite
January 2011
S M T W T F S
« Dec   Feb »
 1
2345678
9101112131415
16171819202122
23242526272829
3031