• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • The Power System Malware Problem, and a ‘Perfect’ Solution

    August 17, 2010 Alex Woodie

    Security products vendor BrickHouse Security issued a warning last week over the malware that foreign computer hackers have placed in critical American industrial components using the Internet. The good news is that the security infiltration has to do with electrical power systems, not the IBM Power Systems servers that run a good chunk of midsize American businesses. The bad news is that bad guys may now have the ability to take everything off line, including your Power Systems servers and the Internet connections that feed them.

    The Wall Street Journal sparked concern across the country with an April report about how Russians and Chinese spies hacked into the American electrical grid in an attempt to map it (apparently, they couldn’t wait for the July 2010 National Geographic map of the three interconnected national grids). The WSJ reports that American intelligence officials detected Trojan Horses left behind by the spies that could be used to damage the grid and, by connection, network communications.

    BrickHouse blogger Stan Shyshkin warns that new “smart grid” technology could make the problem worse. IBM is a big proponent of smart grids, in which sensors are implemented at end points to create a demand feedback loop, thereby lowering power consumption and boosting grid efficiency. “Transforming a largely one-way distribution network like the power grid into a two-way system that sends and receives information from consumers gives the hackers additional entrances into the grid,” Shyshkin writes.

    The National Security Agency (NSA) has stepped up to the plate and is promising to crack down on the security vulnerability with a new program called Perfect Citizen. Unveiled last month, the new program involves installing sensors at companies and organizations that are involved with running the power grid and other critical infrastructure components.

    Perfect Citizen also involves patching the weak links in the grid, such as the end-point sensors in the new smart grids, or “smart meters,” which are based on common off-the-shelf components that hackers could easily deconstruct. Defense contractor Raytheon reportedly has the first Perfect Citizen contract. It’s hard to imagine how IBM, whose experts and technology are involved with counter-terrorism, is not somehow involved with Perfect Citizen.

    The takeaway for Power Systems shops is to realize that threats to security and business continuity today come in many shapes and sizes. Not only must Power Systems shops worry about tornadoes, earthquakes, disgruntled employees, and computer hackers, but now they must consider the ramifications of a greater likelihood of disruptions in access to electricity and network bandwidth. (Malware, ironically, is one of the least of Power Systems shops’ concerns.)

    Granted, if the Western electrical grid is taken offline by hackers, there will be much greater problems for society than companies being unable to access their IBM i applications. Nuclear power plants would be damaged, financial networks would be taken offline, dams would be opened up, and sewage would back up. Even Facebook and Twitter would be effected.

    But as the old saying goes, forewarned is forearmed. Perhaps now is a good time to review your disaster recovery plan, make sure the UPS is functioning properly, and check that there’s plenty of diesel for the generator.



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    FOCAL POINT SOLUTIONS GROUP

    IntellaFLASH™

    FPSG is the only hosting provider that offers IntellaFLASH™.  IntellaFLASH was created by FPSG and is an exclusive FPSG solution that provides the following:

    • No User downtime for production backups
    • Supports BRMS and Tivoli Storage Manager
    • Provides near Continuous Data Protection (CDP)
    • Create point-in-time copies of your entire environment within minutes
    • Easy and quickly repeatable
    • Processes are tied into Job Schedulers
    • No user downtime for planned outages
    • No disruption to the send and receive process production, and DR stays in sync during the Switch test
    • Supports heterogeneous environments
    • Create test/development environments on the fly
      ⇒ Simplify operating system/application upgrade testing efforts
      ⇒ Improve quality assurance testing

     

    Watch our IntellaFLASH™ Video to learn more

    Let’s Discuss Your Custom Solution Needs

    ContactUs@FocalPointSg.com

    Follow us on LinkedIn

    focalpointsg.com | 813.513.7402

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    SEQUEL Software:  FREE Webinar. Aug 25. Learn how SEQUEL simplifies EnterpriseOne data access.
    PowerTech:  FREE Webinar! Top 10 IBM i Security Risks. August 25, 10 a.m. CT
    COMMON:  Join us at the Fall 2010 Conference & Expo, Oct. 4 - 6, in San Antonio, Texas

    IT Jungle Store Top Book Picks

    Easy Steps to Internet Programming for AS/400, iSeries, and System i: List Price, $49.95
    The iSeries Express Web Implementer's Guide: List Price, $49.95
    The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
    The System i Pocket RPG & RPG IV Guide: List Price, $69.95
    The iSeries Pocket Database Guide: List Price, $59.00
    The iSeries Pocket SQL Guide: List Price, $59.00
    The iSeries Pocket Query Guide: List Price, $49.00
    The iSeries Pocket WebFacing Primer: List Price, $39.00
    Migrating to WebSphere Express for iSeries: List Price, $49.00
    Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
    Getting Started with WebSphere Express for iSeries: List Price, $49.00
    Can the AS/400 Survive IBM?: List Price, $49.00
    Chip Wars: List Price, $29.95

    Unica Snapped Up By Big Blue for $480 Million IBM Ducks i Pricing on Most Entry Power7 Servers

    Leave a Reply Cancel reply

Volume 10, Number 29 -- August 17, 2010
THIS ISSUE SPONSORED BY:

PowerTech
New Generation Software
RevSoft
Linoma Software
Twin Data Corporation

Table of Contents

  • IBM Rounds Out Entry Power7 Server Lineup
  • IBM Quintuples Performance with the Power 795
  • Experia Touts SilverDev Tool for IBM i
  • Raz-Lee Unveils GUI for IBM i Journal Security Tool
  • RevSoft Delivers Smart Phone Interface for IBM i Monitoring Tool
  • mrc Unveils Software Exchange for m-Power Users
  • IBM i ERP Developer Achieves QA Gains with Original
  • Jack Henry Taps INETCO for Electronic Payment Monitoring
  • SugarCRM Has a Sweet Quarter
  • The Power System Malware Problem, and a ‘Perfect’ Solution

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • COMMON Set for First Annual Conference in Three Years
  • API Operations Management for Safe, Powerful, and High Performance APIs
  • What’s New in IBM i Services and Networking
  • Four Hundred Monitor, May 18
  • IBM i PTF Guide, Volume 24, Number 20
  • IBM i 7.3 TR12: The Non-TR Tech Refresh
  • IBM i Integration Elevates Operational Query and Analytics
  • Simplified IBM i Stack Bundling Ahead Of Subscription Pricing
  • More Price Hikes From IBM, Now For High End Storage
  • Big Blue Readies Power10 And IBM i 7.5 Training for Partners

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2022 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.