The year is 2010. Global threat researchers have discovered a new piece of malware that uses several techniques to infect particular victims. It specifically targets a type of Siemens programmable logic controller used in the uranium enrichment process at Iranian nuclear facilities. The malware, eventually dubbed “Stuxnet,” profiles the environment it’s running in to ensure it infects only its intended victim. Stuxnet remained undetected for months due not only to its targeted nature but also to the multiple defense evasion and stealth techniques in its arsenal. One such technique is its use of stolen code-signing certificates, ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month, and much more.
