Russian Code Found In US Utility Computer

Click For Summary
A code linked to the Russian hacking operation Grizzly Steppe was found on a laptop belonging to a Vermont utility, raising concerns about the security of the U.S. electrical grid. Although the code was not used to disrupt operations, officials warn it highlights vulnerabilities and potential threats from Russian hackers. Vermont Governor Shumlin expressed alarm over the incident, urging federal investigations and stronger defenses against such cyber intrusions. The Burlington Electric Department clarified that the infected laptop was not connected to grid systems, suggesting the situation may have been overstated in initial reports. This incident reflects broader fears about the implications of cyber warfare and the potential for destabilization through hacking efforts.
Computer science news on Phys.org
  • #33
zoobyshoe said:
Thanks for posting this.

Do you know anything about "Neutrino?"

Really old school delivery system Java code for other malware systems.
Neutrino - связка эксплоитов
Друзья, предлагаем Вашему вниманию наш новый продукт, связка эксплоитов Neutrino.
Хотел бы перейти сразу к описанию и остановиться более детально на некоторых особенностях.

Translated by google as :
******************************************

Neutrino - a bunch of exploits
Friends, we offer you our new product, a bunch of exploits Neutrino.
I would like to go directly to the description and to stay in more detail some of the features.
...
Contacts
Jabber: xxxxxxxx_@_dont_click_xxxxxx.cz
ICQ: xxxxxxxxxx
 
Last edited:
  • #34
When I worked in the power industry, I was considered as a radical reactionary. That was because I considered government (at all levels) as a singularly bad partner in IT and security issues. Today's story linked by @nsaspook seems to confirm my bias.
  1. Information that government shares with industry is low quality. The Grizzly Bear signature sent out by DHS was insufficiently selective to prevent a false positive (neutrino identified as grizzly)
  2. Information that industry shares with government will be mishandled and leaked. In this case it resulted in the Washpost "fake news" that scared the public and reinforces the anxiety that the grid is highly vulnerable. I expect that many fewer people will read and be influenced by the retraction, so the damage can never be entirely undone.
But even more basic, there is an unresolvable conflict inherent in any entity with both offensive (i.e. US Cybercommand) and defensive roles. USA critical infrastructure uses the same basic components as everyone else in the world. Unix variants, routers, hard disk drivers, PLCs, and so on. It is Cybercommand's duty to have the ability to penetrate and bring down the computers of any/all bad guys in the world. In practice, they can only achieve that if they have the capability to bring down anything anywhere, owned by bad guys or good guys. Therefore, I am forced to assume that any standards, software, or other information received from government has been mandated by Cybercommand to be compromised. Government can not tolerate secure computing because bad guys will get their hands on it. I see no possible way to resolve that conflict.
 
  • Like
Likes nsaspook

Similar threads

Current and Future AI Threats to Humanity and the Human Response
  • · Replies 10 ·
Replies
10
Views
5K
Is increasing diversity and decentralization the key to grid cybersecurity?
  • · Replies 2 ·
Replies
2
Views
3K
News Should the US intervene in world problems?
  • · Replies 29 ·
Replies
29
Views
10K
News Interview: U.S., Russia still face mutual destruction threat
  • · Replies 14 ·
Replies
14
Views
3K
News Russia's Return to Totalitarianism
  • · Replies 2 ·
Replies
2
Views
9K
Do Movies Teach Us Realistic Life Skills?
  • · Replies 1 ·
Replies
1
Views
10K