German nuclear plant infected with computer viruses, operator saysSource: Reuters (http://www.reuters.com/article/us-nuclearpower-cyber-germany-idUSKCN0XN2OS)

A nuclear power plant in Germany has been found to be infected with computer viruses, but they appear not to have posed a threat to the facility's operations [?!?] because it is isolated from the Internet, the station's operator said on Tuesday. The Gundremmingen plant, located about 120 km (75 miles) northwest of Munich, is run by the German utility RWE. The viruses, which include "W32.Ramnit" and "Conficker", were discovered at Gundremmingen's B unit in a computer system retrofitted in 2008 with data visualization software associated with equipment for moving nuclear fuel rods, RWE said. Malware was also found on 18 removable data drives, mainly USB sticks, in office computers maintained separately from the plant's operating systems.

Share This Article...

German Nuclear Plant in Bavaria Infected With Malware, Logins CompromisedSource: RT (https://www.rt.com/news/341083-germany-gundremmingen-plant-virus/)

http://www.informationliberation.com/files/Kernkraftwerk_Gundremmingen_1a.jpg
Several computer viruses have been detected in a German nuclear power plant in Bavaria, the station operator said. The malware can steal login credentials and allow a remote attacker to access the cracked computer.
The incident took place at Gundremmingen plant about 100km from Munich.

“In Gundremmingen nuclear power plant so-called office-malware has been found during … testing work in Unit B,” a statement released by the power plant said (http://www.kkw-gundremmingen.de/presse.php?id=571).

Germany's Federal Office for Information Security (BSI) was immediately informed.

The statement initially didn’t mention what kind of malware was involved, only saying this software has been “known for a few years” and is designed to make “an unwanted connection to the internet.”

Later, RWE, a German electric utilities company that runs the plant, confirmed to Reuters the viruses include “W32.Ramnit” and “Conficker”. They were found in a computer system retrofitted in 2008 with data visualization software.

The worms were also found in at least 18 removable data drives, mainly in USB sticks and office computers maintained separately from the plant system, the company added.

RWE claims the incident poses no threat to the plant, its personnel or the environment.

According to data (https://www.symantec.com/security_response/writeup.jsp?docid=2010-011922-2056-99)from Symantec, an American technology company, W32.Ramnit is a worm that spreads through removable drives and can steal login credentials. “The worm also functions as a back door allowing a remote attacker to access the compromised computer,” the firm said.

http://www.informationliberation.com/files/Ulm_Gundremmingen_(fcm).jpg

Conficker can disable several important Windows services and security products, according to information (https://www.microsoft.com/security/portal/threat/encyclopedia/entry.aspx?Name=Win32%2fConficker) from Microsoft.

There was a major accident in Gundremmingen nuclear plant in 1977. Its Unit A suffered a rapid shutdown of the reactor due to poor weather conditions, which led to operational errors. Unit A remains out of service.

Earlier in March, a study by Oda Becker, a physicist and independent expert on nuclear plants said (https://www.bsi-fuer-buerger.de/SharedDocs/Downloads/DE/BSI/Publikationen/Lageberichte/Lagebericht2015.pdf?__blob=publicationFile&v=3)German nuclear plants are vulnerable to terrorist attacks.

The report states that a nuclear plant’s smokescreen designed to prevent any attacks from the air provides only minimal protection for the facility. Such a smokescreen “only slightly diminishes a chance of collision with a plane,” hijacked by terrorists, it adds.

According to Becker’s research, another significant threat to German nuclear plants is posed by a possible terrorist attack using helicopters filled with explosives.

In another study published earlier, Becker listed poor security standards, natural disasters, terrorist attacks and emergencies caused by the deterioration of the German nuclear plants’ security systems as major threats to the industry.

Also in March, an exclusive report by the Belgian Derniere Heure newspaper said the Brussels suicide bombers, Khalid and Ibrahim El Bakraoui, were planning attacks on Belgian nuclear power stations. The brothers reportedly planted a camera outside the house of a senior nuclear official. The footage, confiscated by investigators, reveal “dozens of hours” of the movements of Belgium's nuclear boss.

Share This Article...

Officials for Hanford Nuclear Reservation trying to determine if second giant tank containing radioactive waste is leakingSource: Daily Journal (http://www.dailyjournal.net/view/story/1d4b1d2454df4b23afe65fefa0eeca06/WA--Hanford-Tanks)

Officials for the Hanford Nuclear Reservation are trying to determine if a second giant underground tank containing radioactive waste from the production of plutonium for nuclear weapons is leaking, the U.S. Department of Energy revealed on Tuesday. Air monitors attached to an aging tank known as AY-101 recently found radiation at higher than normal background levels, the agency said. A video inspection of the underground tank found no evidence that radioactive waste had leaked from the primary tank into the space between the two walls, Hanford officials said. A Hanford watchdog group on Tuesday contended the higher radiation found by the air monitors was evidence of a leak in a second tank.

Share This Article...