Ralph Langner: Cracking Stuxnet, a 21st-century cyber weapon

Подписаться 25 млн

Просмотров 307 тыс.

50% 1

www.ted.com When first discovered in 2010, the Stuxnet computer worm posed a baffling puzzle. Beyond its unusually high level of sophistication loomed a more troubling mystery: its purpose. Ralph Langner and team helped crack the code that revealed this digital warhead's final target -- and its covert origins. In a fascinating look inside cyber-forensics, he explains how.
TEDTalks is a daily video podcast of the best talks and performances from the TED Conference, where the world's leading thinkers and doers give the talk of their lives in 18 minutes. Featured speakers have included Al Gore on climate change, Philippe Starck on design, Jill Bolte Taylor on observing her own stroke, Nicholas Negroponte on One Laptop per Child, Jane Goodall on chimpanzees, Bill Gates on malaria and mosquitoes, Pattie Maes on the "Sixth Sense" wearable tech, and "Lost" producer JJ Abrams on the allure of mystery. TED stands for Technology, Entertainment, Design, and TEDTalks cover these topics as well as science, business, development and the arts. Closed captions and translated subtitles in a variety of languages are now available on TED.com, at www.ted.com/translate.

Наука

Опубликовано:

28 мар 2011

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 377

@datag1199 Год назад

So intriguing. The complexity and sophistication involved in this attack is mind blowing. Great Ted Talk 👍

@HreForTheMusic 10 месяцев назад

If you want to read more about this you should read "this is how they tell me the world ends" im about halfway through and they discuss this topic

@datag1199 10 месяцев назад

Yes! I finished the book - great read. After completing the book, I wanted to find any Ted Talks, videos, documentaries on the various topics covered in the book. Good stuff@@HreForTheMusic

@izzate7 4 года назад

The engineering involved in this is bananas.

@P00P0STER0US 13 лет назад

Great news! I just saved 15% on my nuclear fuel enrichment processing plant digital worm attack insurance by switching to Geico!

@keystonebrotherb 8 лет назад

Countdown To Zero Day Great book on this subject.

@AritraDaddy 8 лет назад

The movie's out too. Check out kickass torrents!

@keystonebrotherb 8 лет назад

+Aritra Das thanks! Same name?

@AritraDaddy 8 лет назад

+Brian Grant Yep.

@LattiMonstaaa 6 лет назад

if only people talked about updates and passwords as much as they talk about zero days...

@izzate7 4 года назад

Reading this right now. Mind blowing how vulnerable everything we depend on is.

@abdihassanawali 9 лет назад

When he refers to the "Grey Boxes," is he talking about SCADA or the Programmable Logic Controllers (PLCs)?

@tanuki42 9 лет назад

The PLCs

@fidelquintela7128 9 лет назад

Yes, PLCs. 417 and 315.

@KafshakTashtak 7 лет назад

Iran uses PLCs made by Siemens. And the code knew how those PLCs work. It's like Microsoft and Siemens have cooperated with the group that made Stuxnet.

@felixu95 5 лет назад

Or it's like PLCs are intended to be user-friendly and programmable.

@williambell7086 5 лет назад

Yes

@edwinfrancisco8116 11 месяцев назад

This ted talk was so good! I enjoyed learning about the catastrophic dangers that cyberattacks are capable of doing :D

@gexman31 13 лет назад

this is one of my favorite ted talks

@killercuddles7051 Год назад

Hi gexman31.

@FutureCommentary1 Год назад

Here after reading "This is how they tell me the world ends" from Nicole Perlroth.

@takeover08 2 месяца назад

Same

@roidroid 13 лет назад

@Saerain i'd never heard about ANY of this, until now. It's fascinating. A little TOO fascinating.

@ChrisOrillia 13 лет назад

"it plays prerecorded video like in the movies" my god this thing is a monster

@NeonGrillz 2 года назад

It doesn't though. It acts as a middleman between the electrical input/output from the actual centrifuges and the program that uses that data to display it (temperature, spinning speed, whatever) on a monitor. It will sit dormant for a while and just record the typical data that flows through the electrical I/O when the centrifuges spin normally, and as it starts manipulating the centrifuges it will give fake output data (similar or equal to the data it recorded) to the program that displays the data on the monitor.

@edwinfrancisco8116 11 месяцев назад

@@NeonGrillz so "it plays prerecorded video like in the movies" but with extra steps lol

@qttytn 13 лет назад

Quality TED video

@Catsscratchfever 13 лет назад

For all those that don't know....The gray boxes he is referring to are called Programmable Logic Controllers... Or PLC for short ....What he touched on here and i would like to expand on is that ....EVERY...Oil and Gas facility.. Oil and gas refinery .Coal fired power plants... Nuke plants...The list goes on and on...Have these..This is scary at best....

@TheBerkeleyBear 13 лет назад

intriguing speech. amazing stuff

@Argoon1981 11 лет назад

is called efficiency, if the information comes across fast and easily that way then even a engineer can do a slide no need to contract a graphic designer to do presentation slides. The information is the must important not the looks of the slide show.

@MaxMach555 11 лет назад

I think it necessary operational management procedures of the target plant is available in advance. Program code of Stuxnet is written on the assumption management operational procedures? ...Maybe.

@eLurkr 13 лет назад

this is fascinating

@bluefootedpig 13 лет назад

@Rightious23 Internet was developed first by Bell labs. It was then picked up by the military to create a better communication. Then it started to expand as more colleges picked up on it, and that is how it started.

@geirtwo 10 лет назад

I'm looking foreward to the Stuxnet movie, it's not going to be as action filled as Münich though.

@porkypine1888 13 лет назад

Brilliant!

@david0aloha 13 лет назад

@yourtube20061 Nah, the Soviet electrical grid was just poorly maintained and was poorly engineered. There was something about maintenance being done at the plant and the stations on the grid going out unexpectedly due to the rapid changes in voltage, the maintenance being dragged out too long, and whatever was being done was done poorly. I can't remember the details but I know wikipedia has a good article on it.

@ZephrSec 12 лет назад

its freely available on the web

@tipoomaster 13 лет назад

Not a bad explanation, as a programmer I was expecting more depth though. Even most of the TED audience wouldn't understand that I guess, so good talk.

@anasughratdar8045 Год назад

can you explain me here in comment. I'm pursuing cyber security post graduate program RN

@tipoomaster Год назад

@@anasughratdar8045 It's been 11 years since this comment and I've probably forgotten more about Stuxnet then I remember haha, it was kinda cool though

@anasughratdar8045 Год назад

@@tipoomaster lol, one of my professor gave an assignment to write comprehensive report of Zero days, a documentary based on this attack!

@kvuppal1 3 года назад

Very interesting! Pity though, that we're not told who could be behind the attack. It's as important à question as the exact mechanism .

@igorryabets5175 2 года назад

It’s the NSA. Read This is how they tell me the world ends - a book on the subject

@kendohan 2 года назад

Read "Confront and Conceal" by David Sanger, a well-known author in ICS/OT attack subjects like Stuxnet.

@fabiodelgado5457 2 года назад

Thanks for the recommended reading!

@ecjjox Год назад

@@igorryabets5175 Dont forget Israel too

@Kojak7snap 13 лет назад

@Neylonx Not sure how to answer this; I am not an idiot, but I haven't heard of this worm. That pretty clear?

@Catsscratchfever 13 лет назад

THIS VID MUST GO VIRAL......PLS PEOPLE

@aarkey329 4 года назад

story well told...

@chairde 13 лет назад

You should use subtitles of this video.

@javierpee7400 6 лет назад

what are the 5 things inside the bomb

@DavidAKZ 13 лет назад

@WulfBand are you thinking of Tim Berners Lee who invented the W.W.W using H.T.T.P

@flavorysoup 12 лет назад

@xTonyxMaddenx Most likely it isn't possible, but you never know. We don't know what they have over there. One thing we do know is they used their hackers to capture the drone which is pretty impressive.

@VainOstentation 7 лет назад

Should've got a Mac, Iran

@KafshakTashtak 7 лет назад

Problem is the code used legit security clearances that were not similar to any other code, as if the windows deliberately allowed the code and told the antivirus softwares that it's part of the windows. In that case, even mac could have been used in such attacks if the apple inc. has allowed the virus to become part of the OS.

@Fishoilification 7 лет назад

lol

@GoLDnTRiXX 7 лет назад

VainOstentation the thing is, both, Microsoft and Apple cooperate with the intelligence agencies in the US, whether they want or not, and also many other companies companies

@m.albertgarzag.4218 7 лет назад

I wonder why anti-virus softwares are available for OS X, very interesting.

@Teluric2 4 года назад

By the time you finish highschool you will understand this better delete what you posted

@seinj9013 11 лет назад

stuxnet source code available on github

@williambell7086 5 лет назад

only part of it, the whole source code is still unknown. even if you did have the whole source code you wouldn't be able to make any meaningful changes it is very sophisticated

@prismakkerra 13 лет назад

@ZachVMNTX1 Probably to save space. Its alot of pressure to do a talk on TED. If its a mistake, its an honest one. Its good you're on point though Zach ^.^

@mhand00 13 лет назад

@AppA Which Game?

@syahbuljusuf7052 7 лет назад

how bout zero days movie (2016)??

@stefangeorge2844 7 лет назад

syahbul jusuf this guy was in the documentary

@Jotto999 13 лет назад

So, what can they do about this? Maybe they need some custom made firewall and antivirus. Well, I'm sure they've got defenses of some kind set up, but I sure hope no one's able to do anything too serious with this.

@liquidminds 13 лет назад

@georgemargaris that's the point.. the computers in the Nuclear Plants aren't connected. The computers of the technicians sometimes are. If you infect a Laptop of an engineer, he just needs to connect it once to the powerplant to infect it. you don't need direct internet-connection. Considering, that those countries usually try to get whatever information to backtrack it and gain an advantage, it makes sense that technicians need to access the internet. Risky but thats nuklear energy too...

@hippsomhapp 12 лет назад

@leofzky its not windows.. watch it again.

@ShaneWelcher 4 года назад

As a programmer from the US....I say *That is interesting* 😂

@waltersobchak7275 4 года назад

Do you understand this?? Also is a virus just code?? Thanks.

@ShaneWelcher 4 года назад

@@waltersobchak7275 I fully understand this, I emulate & simulate software all the time.

@Jotto999 13 лет назад

@Talon3000 That is a sure way. Though, don't they need them connected to the internet to do certain tasks or something? I dunno. (It would help if we could ask Ralph! :-D)

@edex-automacaoindustrial2731 6 лет назад

Talk about stuxnet vs ransomware

@luciechen2008 4 года назад

at the very end, why Ralph said fortunately? what could happened if that was not US

@mayattv4986 4 года назад

Just like the chinese where they would compromise every systems in south east asia to be able to invade their seas.

@infanzer 13 лет назад

Talking about one of the most sophisticated and potentially dangerous computer viruses ever created, and they're using slides that look like they were made using Windows 95 Power Point, by a grade-school student.

@xynyde0 4 года назад

its called keeping it simple

@MelindadelosSantos 10 лет назад

What a dandy - he didn't wear his cowboy boots today! :D

@yuuka437 13 лет назад

@OuranianCyclops They believe it took a team of 30 people or above at the least, potentially sponsored by a world power that spent months getting the necessary information in order to pull it off. One could say that Stuxnet is the first 'real' cyber weapon, doing things like this on such a scale.

@mistax2k 13 лет назад

This rules.... I love this

@Kyle_Warweave Год назад

It was fun experience gathering.

@duppymaker 13 лет назад

@sqbsbear oh im sure, im just saying what was the need for internet access in the first place

@RandallFlaggNY 11 лет назад

That's classified.

@blurglide 13 лет назад

@baumarboltree What are you talking about? But yes- cyber warfare will make missiles less necessary, and since they're difficult to trace, will be used much more often than missiles.

@Ramone_Alcalino 4 года назад

that Stuxnet it's brutal

@Skeluz 13 лет назад

Wow. Scary.

@SlackerSlayer 12 лет назад

@NoShit12 What confuses you about that part?

@Dmhlcmb 3 года назад

If there’s no x after TED, it’s likely to be a good presenter.

@et7992 4 года назад

A lot of power outages are the results of this kind of attacks

@Schmogel92 13 лет назад

@SuperiorApostate I think Thats because "hacking" is generally treated like a crime in the US

@heltok 13 лет назад

it's SKYNET probing for weaknesses!

@reginadruchek5088 7 лет назад

dang thing changed my name from Nical to Nizal in ecourt for multnomah co. to Oregon state system and says I'm from nizal Iran 2016

@t3tsuyaguy1 13 лет назад

@ZirconCode I don't know. The whole speech seemed just to be a warning. "Hey, we should really be doing more about this, than we are." My fear is decidedly monger free. :)

@artifactingreality 13 лет назад

@infanzer its not the slides, its how you use them. but come to think of it he didnt use them very well either. :)

@flabbywalrus 13 лет назад

@reafdaw01 continuted.... The most likely government that would develop Stuxnet is the US together with the Israeli government. Now this raises a massive issue because it is likely that this was an experiment to see how powerful their "cyber-warfare" was; the fact that a foreign government has a tool that can seriously compromise important things like nuclear power plants is more powerful than any tank or missile. I'll assume that you will be able to understand the implications of such a tool.

13 лет назад

@malc623 There are viruses for MAC as well. Duh.

@Anantko 13 лет назад

WOW!

@thinkhendo 13 лет назад

@opptynox I always used to make that mistake!

@omfg322 12 лет назад

@Tretso same here in canada XD

@lakermangmx 13 лет назад

just install an antivirus software and update your system with the latest service pack I guess :D

@bigcheesy95 13 лет назад

You know this is one of the villains in a james bond movie

@praharsha1851 3 года назад

Cyber weapon of Mass destruction 💥

@bigzigzag5643 9 лет назад

Unless I misunderstood, he said that 70% of the Stuxnet attacks were attacking Iran. So, where was the other 30% attacking? That's still a pretty significant figure.

@shellscripting9526 8 лет назад

+bigZig Zag everyone is hacked. figures are just figures.

@lemagreengreen 7 лет назад

Just spread outside of the country, it showed up around the world but didn't seem to do anything anywhere but Natanz as far as I know.

@cristianharomoraleda2289 8 лет назад

Skynet kripton is de best power military computer

@MrGrogs901 13 лет назад

@gaiagale i understand...maybe the point i should have made was that Tim Berners Lee never made a penny from it and instead gave his idea away for free.

@layna8924 9 лет назад

TO ADD, FROM THAT ARTICLE FROM THE WEBSITE - 15,000 SERVERS HAVE BEEN ATTACKED IN THE LAST 24 HOURS...

@opptynox 13 лет назад

@Neylonx Richard Hawkings? Is that a cross between Richard Dawkins and Steven Hawking?

@cman011 13 лет назад

inb4 Terminator reference.

@kckong3 13 лет назад

@georgemargaris so that their managers can monitor the plants from home???

@synju 13 лет назад

@Tretso Thumbs up! lol.. but does that mean if a nuke accidently wipes out Portugal no one will care either?

@Meganarb 12 лет назад

He says it 50 seconds in, there is no reason for thinking otherwise.

@zimonslot 11 лет назад

When does stuxnet become self-aware?

@reafdaw01 13 лет назад

@flabbywalrus no not at all. Maybe you can enlighten me?

@ZachVMNTX1 13 лет назад

@Louislane20042000 no but it's right in there an actual 7. not 0111. I know that you can count to 7 in binary. or is he jsut doing that to save space you think? it would be odd though because there are two "7's"

@hornet6969 4 года назад

arstechnica.com has a great write up on this.

@philipwinkelhorst934 4 года назад

Yesterday, The news broke that the Dutch Secret Services (AIVD) developed the Stuxnet virus. The Dutch intelligence bureau did more BIG cyber operations and was asked by US and Israel for there High skills of covert tech knowledge.

@asunder845 13 лет назад

Whats scary is that I served on a US aircraft carriers for years and we had PLC's all over the damn place.

@muzaharsherazi8419 Год назад

Wait know as iran has it's own cyber warfare wing's in thier army i don't know what type of virus they will send to sabotage western countries and Israel

@NLS87 13 лет назад

@qgshadow And they may take 10 mins, but it takes AGES to find the exploitable area. And it's always something obscure. not something you can exploit just plugging an USB device, like Windows. All systems are vulnerable and if nobody cares about mac's, then it's their fault using windows. Linux machines are a whole different story, because in corporate environments LINUX isn't good enough for workstation use (lack of commercial applications) and in servers the physical barrier is stronger.

@ratholin 13 лет назад

Neat. .

@ZachVMNTX1 13 лет назад

@gunhimdown I never knew 7 was in binary.

@sacredgeometry 13 лет назад

@Tretso Thats not true! I love portugal :)

@herauthon 13 лет назад

Something McAfee warned about in the 80ies - but these are triplehybrid codes

@reginadruchek5088 7 лет назад

omg this drives me silly. the cascade is resistors for driveline pump spread across rotor controller with pulsitile lead impedance from orphaned lead previous non Dr icd

@albert.escobar31 Год назад

Nicole Perlroth brought me here.

@OuranianCyclops 13 лет назад

so they are making us believe that a random person was worried about Natanz possible nukes so he made stuxnet to shut em down?

@layna8924 9 лет назад

HAVING PROBLEMS AGAIN, TRYING TO POST...TO CONTINUE...THROUGHOUT THE U.S., EUROPE, ASIA AND THE MIDDLE EAST...l.

@Mordicay1849 13 лет назад

@xXxRadicalDreamerxXx Just because he talks about the virus that was used to disable the nuclear plant doesn't mean he doesn't support what it was used for...

@NLS87 13 лет назад

@qgshadow it's untrue.