Looks like the Iranian nuclear facility at Natanz is, at the very least, 0 for 2 against cyber attacks. First came Stuxnet, which wreaked havoc with the equipment used to purify uranium. And now–at least, if a recent report (via VentureBeat) is true–they are dealing with a malware infestation involving sudden, late-night AC/DC.
F-Secure chief research officer Mikko Hypponen received the following email from someone who claimed to be an Iranian nuclear scientist:
I am writing you to inform you that our nuclear program has once again been compromised and attacked by a new worm with exploits which have shut down our automation network at Natanz and another facility Fordo near Qom.
According to the email our cyber experts sent to our teams, they believe a hacker tool Metasploit was used. The hackers had access to our VPN. The automation network and Siemens hardware were attacked and shut down. I only know very little about these cyber issues as I am scientist not a computer expert.
There was also some music playing randomly on several of the workstations during the middle of the night with the volume maxed out. I believe it was playing ‘Thunderstruck’ by AC/DC.
Hypponen was unable to confirm the story–but he was able to confirm the email came from the Atomic Energy Organization of Iran.
Memo to the American cyberweapons program: We’re not saying this was you guys, but if it was, you might want to opt for a less obvious calling card in the future.