The year is 2010. Global threat researchers have discovered a new piece of malware that uses several techniques to infect particular victims. It specifically targets a type of Siemens programmable logic controller used in the uranium enrichment process at Iranian nuclear facilities. The malware, eventually dubbed “Stuxnet,” profiles the environment it’s running in to ensure it infects only its intended victim. Stuxnet remained undetected for months due not only to its targeted nature but also to the multiple defense evasion and stealth techniques in its arsenal. One such technique is its use of stolen code-signing certificates, ...