If you can stick through it for the full length, here's a fascinating combination of reverse engineering and detective work to unravel exactly what the Stuxnet worm was up to.
One of the big take away points is this attack wasn't a buffer overflow or a cross site scripting attack (the systems weren't even directly connected to the web). It went after design flaws in the system that management software fake input and output to the PLC controlling these industrial system.
One of the big take away points is this attack wasn't a buffer overflow or a cross site scripting attack (the systems weren't even directly connected to the web). It went after design flaws in the system that management software fake input and output to the PLC controlling these industrial system.