Stuxnet TED talk 10 years ago: What I got completely wrong 

Great video Ralph. I’ve gone back and rewatched your Ted Talk more than a few times, as it was so interesting to me I was blown away by it.

Here while reading 'This is how they tell me the world ends".

Your work and prior talks, including one with NATO, led up to this enormous opportunity you landed and delivered on so well - even if it took some time for open source to connect the dots to confirm your assertions and, since then, gain additional big-picture perspective. The payload-related risk persists, as you point out, and the threat landscape continues to advance even with distracting theater, making sure the defensive capabilities starting with basics to address risk matters very much!

Thanks, Ralph

Always a good thing to re-asses our past findings, no mattet the contexts. Let's dig in, learn me something!

I understand the feeling of worthwhileness for doing just a 10 minute talk - the topic certainly deserves much more than that to present. It may not have been clear back then, but stuxnet was a major event in history in both the areas of cybersecurity as well as warfare. Documenting and reporting on such things is important for the benefit of both present and future society.

First of all great TED Talk, and great analysis video. As far as I understand your main takeaway after these 10 years is that is that the whole situation isn't as dangerous as you imagined it would be, that apparently hackers can't do THAT much harm as you considered? If I was able to understand your main point... Do you think that this will keep being the case in the future? Cause, more and more things are connected to the internet, and there is more and more microchips being put into everything and more and more devices running some sort of software. I mean, people talk about pilotless planes in the future. I see more and more opportunities for bad agents to do something horribly remotely as the time goes by. What if Stuxnet was just the beginning, and this would be child's play compared to the cyber attacks that will happen in the future or cyber attacks that could happen in the future...

Genuine question: How can we be sure that there wasn’t/isn’t a cyberwar but it’s very subtle / silent and the targets still don’t know what’s happening? It’s very possible that stuxnet may never have been discovered (and therefore most likely remained a covert operation and unknown publicly) if it wasn’t for the later, more aggressive, versions of it released.

Hello Mr Langner, have you put these thoughts into a company report or paper please?

I was working at an un named company in this timeframe. The company used siemens PLC, step 7 on engineer laptops, a not entirely distant thing (at least at first) from the basic story. Theatre automation moves very large objects around, and puts actors on cable - flying them. So, an automation platform going bezerk and running outside of safe coded workload could prospectively kill people. Ralph, and the researchers did enough work that it became clear it was a specific targetted attack. It did leak, but IMHO that was more the windows components that were party on that. I'm probably wrong here in suggesting (and how dare I!) that I am unsure that I agree with Ralph's current view. I don't think many people using the gear have fundamentally got better at the security around it. I don't think funding has been better. I question if in a general sense wether security and posture has got better. I would say that its harder to some degree to create the worm piece via the windows engineer laptop part of the puzzle. So there is that. But even there, as with in Florida, many municiple and governmental infrastructure pieces are really quite under funded, under manned, and under skilled. I am also unsure about the trolling part. In terms of Ukraine, that did not stop in Ukraine. It really walloped some orgs like Maersk. gvnshtn.com/maersk-me-notpetya/ So, do we have the hackers, the bunker kids and the troll artists. Yes. In this, Ralph is right. And in one way, PLCs are... kinda ... well, boring to a kid in the bedroom. But, I also take it this way. If Ralph really considered that he and his team could generate a 14 byte code release, and he (IMHO) rightly concluded not to release as this would lead to real consequences - then we should remain vigilent. And I say that because IMHO, the world cyber war did not cool off between the talk and now. I'd rather say that - if we look at the US in the last two weeks - in regard to Microsoft Exchange - that the cyber war now has larger 'armies', targets, and 'arguments'. If there was only one super power then, I'd argue it is at least contested/multi polar now. The Iranians, The terror cells, the Chinese, The Russians, The North Koreans, Criminals, Ransom ware creators - all of these forces are on the move, and seeking targets. That remains why I hold Mr Langer's original concern back at TED as a real thing, and as much as what we see is trolling, this doesn't equate to only trolling tomorrow... I do share his happiness that things did not get as ugly as was perhaps possible, and for that I will always be thankful. Thank you for your time as always Mr Langer. I sincerely appreciate it!

I don't get it; what would have been the use of the first version if it never was going to be used but just stayed hidden forever in the Natanz plant?

Also verstehe ich das richtig: Stixnet hat nur die Uran Anreicherung in Natanz betroffen oder alle Anreicherungsstandorte in Iran?

So the US built the first version of stuxnet alone, then israel helped on the second version?

Comment about sympathy for Ukraine didn't age all too well 😅

I still find it hard to believe that Stuxnet was a first, if it truly was, that means that mankind created an extremely sophisticated product that worked perfectly right out of the box… it clearly must be Alien. ;)