About Thawte

News

Nuclear plant malware illustrates need for monitoring updates

A malware infection was recently discovered on the internal systems of a Japanese nuclear plant, illustrating the need to monitor software updates and install security patches. Oracle will soon release a multitude of patches, which should be installed by an experienced IT member.

According to CSO, a nuclear plant in Tsuruga, Japan, recently underwent an investigation by the Nuclear Regulation Authority. The group suspected that the plant's security measures, including those against threats like terrorism, were lacking, prompting the investigation.

Earlier in January, an administrator reportedly discovered suspicious activity on one workstation at the plant. A computer in the control room had been accessed more than 30 times in five days, and had also been potentially communicating with an outside system. Malware likely infiltrated the network when an employee updated video player software. It is unknown whether the software contained the malware inherently or if the worker accidentally installed a fake video update.

The malware caused significant data leakage of the plant's system, including email communications and training material. The JAEA is looking into the extent of the malware infection, but the infected system contained more than 42,000 files, all of which are at risk of being compromised.

CSO stated that this shows a need for control over software on an organization's systems, as well as oversight into activities taking place on the network.

"[I]t shows a need for visibility into what's happening on the network, and visibility into what systems are able to communicate with the outside and controlling (or blocking) such access as needed," the source stated.

In this way, administrators should be sure that all programs are up to date, including installing all security patches. However, these activities should be carried out by supervisors or IT team members, and not by individual employees, as occurred at the nuclear plant. This can lead to infections if not done properly.

Recently, Oracle announced preparations to issue 147 security patches, including 36 for Java alone, according to IDG News Service. Managers should be sure that these are installed as soon as possible by an experienced individual.

Protect data in transit with an SSL certificate today.

corporate office

Thawte
The Gateway
Century Lane
Century City, 7441
Cape Town
South Africa

Postal Address:
P O Box 15986
Panorama 7500
Cape Town
South Africa

Call: +353 1 793 9141
Fax: +27 21 819 2950

We have updated our Privacy Policy which can be found here.

Thawte is a leading global Certification Authority. Our SSL and code signing digital certificates are used globally to secure servers, provide data encryption, authenticate users, protect privacy and assure online identifies through stringent authentication and verification processes. Our SSL certificates include Wildcard SSL Certificates, SAN /UC Certificates and Extended Validation SSL Certificates.

What is an SSL Certificate Which SSL Certificate is Right for Me? Why Choose Thawte?