Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 

Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Malware infects space station laptops

Not the first time, says NASA; astronauts load up Norton AntiVirus

By Gregg Keizer
Comments
12
Recommended
34

Active Comments

Tranman says: Is it a bird? A plane? A comet? A meteor? No, it's the International Space Station, falling out of the...
Read the rest | Reply
Anonanon says: re "Nasa is using A31p laptops???" . It's probably the 'latest' laptop that has been certified and modified for use...
Read the rest | Reply
All Comments (12) | Post New


Zone

Featured Zone
The Security Zone

With the mobility of employees and the ease with which external devices can be brought in and out of a network, continuing to build your security plan for network servers and clients is a must. Fortunately, there is much that organizations can do to protect themselves from attacks - internal and external. Having the right policies, procedures and server configurations is critical...

Learn more in The Security Zone
See All Zones

August 27, 2008 (Computerworld) Malware has managed to get off the planet and onto the International Space Station (ISS), NASA confirmed today. And it's not the first time that a worm or virus has stowed away on a trip into orbit.

The attack code, which space news site SpaceRef.com identified Monday as "W32.Gammima.AG," infected at least one of the laptops used on the station, an international effort headlined by the U.S. and Russia.

National Aeronautics and Space Administration spokesman Kelly Humphries declined to identify the malware, saying only that antivirus software detected a worm on July 25.

The first public report of malware about the ISS was logged on Aug. 14. In NASA's daily status report on the station, the agency said that Sergey Volkov, the ISS commander, was "working on the Russian RSS-2 laptop" and "ran digital photo flash cards from stowage through a virus check with the Norton AntiVirus application."

A week later, on Aug. 21, Volkov "checked another Russian laptop, today RSK-1, for software virus by scanning its hard drives and a photo disk."

The next day, Volkov transmitted antivirus scanning results from the laptop to Earth, and U.S. astronaut Greg Chamitoff scanned another computer for possible infection. NASA also said in Friday's report that all laptops on board the ISS were being loaded with antivirus software.

"All A31p laptops onboard are currently being loaded with [the] latest [Norton AntiVirus] software and updated definition files for increased protection," said NASA.

W32.Gammima.AG -- the name that Symantec Corp., maker of Norton AntiVirus, gave the malware -- is a year-old Windows worm designed to steal information from players of 10 different online games, some of them specific to the Chinese market. Among the games: ZhengTu, HuangYi Online and Rohan.

The worm also plants a rootkit on the infected system and transmits hijacked data to a remote server.

Today, Humphries said that the worm poses no threat. "It was never a threat to any command-and-control or operations computer," he said. He refused to detail how the malware snuck aboard, citing "IT security issues," but other sources, including SpaceRef.com, speculated that it might have stowed away on a laptop or a flash card.

In fact, the Aug. 11 ISS log entry hinted at digital camera storage cards as a suspect.

"There have been other incidents," confirmed Humphries, who works at the Johnson Space Center in Houston. "I don't know when the first one was, but the station will have been in orbit for 10 years [come] November."

"If there is any good news at all, it's that the malware was designed to steal usernames and passwords from computer game players, not something that orbiting astronauts are likely to be spending a lot of time doing," said Graham Cluley, a senior technology consultant with Sophos PLC, in a post to that company's blog today. "After all, with a view like that, who needs to play the likes of World of Warcraft?"



Make a Comment Recommend Story Slashdot this Digg this
Print Story Send Feedback Email this Reprints

Related Content

Webcast: Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management
Whitepaper: A Simpler Approach to Remote Access

CW Report: Virtual Reality
Malware Infects Space Station Laptop
Fake LinkedIn profiles promise prurient pics, send patsies malware instead
Security vendors ready fix for 'Curse of Silence' SMS attack
How to secure your Vista PC in 10 easy steps
Amazon warns customers of infected digital photo frames

Today's Top Stories

Microsoft's Web site overwhelmed by would-be Windows 7 downloaders
Review: Windows 7 Beta 1 shows off new task bar, more UI goodies
FAQ: How to get the Windows 7 beta
Elgan: Palm and Sony out-Apple Apple
Google: Chrome in 'never-ending' beta
Memory card standard could provide up to 2TB on an SD card

What People Are Saying

See comments | Add new
See comments | Add new

Resource Alerts

to receive Security Resource Alerts

Webcasts

Winning Enterprise Authentication: 5 Key Steps for Success

Dynamic Data Center and Virtualization Drives Operational Excellence at Emory Healthcare

Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management

Whitepapers

Why Your Firewall, VPN, and IEEE 802.11i Aren't Enough to Protect Your Network

Sorting Out the Myths When Purchasing SSL Certificates

A Simpler Approach to Remote Access

Computerworld Reports

Computerworld Report- Large Enterprises Pay More for IPAM

Computerworld Technology Briefing: Intelligent Users Use Business Intelligence

Virtual Reality

Editor's Picks

Microsoft's Web site overwhelmed by would-be Windows 7 downloaders

Review: Windows 7 Beta 1 shows off new task bar, more UI goodies

FAQ: How to get the Windows 7 beta

Elgan: Palm and Sony out-Apple Apple

Google: Chrome in 'never-ending' beta

Memory card standard could provide up to 2TB on an SD card

Shark Bait
View Shark BaitFired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day.

New baits
Shark Bait
Webcast

Turning information into a Competitive Advantage "Turning information into a Competitive Advantage"

Companies today are realizing that competitive advantage is harder to sustain when based solely on gains in productivity and cost efficiency. The focus is shifting to invest more in business optimization initiatives which rely on trusted information to develop new insights that deliver better business results. But how can this be done efficiently in a business environment across multiple applications and processes. The answer is an Information Agenda - an innovative approach to transforming business information into a strategic asset for competitive advantage.

View this webcast now! more

See more Webcasts more
TODAY'S TOP BLOG
Dan Tynan Dan Tynan: CES preview: The wireless revolution is finally here
Two themes are clearly emerging: gadgets are going wireless in a big way, and everything is finally getting connected. ... [more]
 


Webcast: The Automation of IT Compliance Programs: Reducing Risk, Cost and Complexity of Corporate Compliance
To meet the growing number of industry and federal regulations, businesses spend significant time, effort, and budget determining how to best meet continuously evolving IT compliance requirements this new Forrester Research and Juniper Networks Webcast led by industry experts who examine global IT security and compliance trends, common IT compliance issues and challenges, and best practices for successful IT compliance programs.

View this webcast 
Whitepaper: Tackling the Top Five Network Access Control Challenges
The major challenge enterprises face today is how to create innovative business models and to increase productivity by opening the network to a dynamic workforce, while at the same time protecting critical assets from the vulnerabilities that openness and user mobility bring. In addition, to comply with industry and governmental regulations, enterprises must prove that they have stringent controls in place to restrict access to sensitive data. This paper describes the top five networking access control challenges that companies like yours are facing and solutions that they are deploying today.

Download this white paper 
Whitepaper: Addressing PCI Compliance with a Comprehensive Network Access Control Solution
The Payment Card Industry (PCI) is one of the most comprehensive data security standards in a cluster of regulations that have emerged over the past decade. Meeting its requirements is both complicated and expensive for many companies. Learn how a comprehensive access control solution allows retailers and consumer organizations adhere to the core tenets of PCI, and delivering the necessary information and reports needed for compliance audits.
Download this white paper 
Whitepaper: Control System Cyber Vulnerabilities and Mitigation of Risk for Utilities
Today's global industrial infrastructure includes thousands of electric utilities, water/wastewater management companies, oil and gas suppliers, chemical manufacturers and other facilities critical to daily functioning. Learn why relying on off-the-shelf operating systems and Internet-based remote access control to carry out production tasks, traditional control networks can leave today's global industrial infrastructures vulnerable to hackers, extortionists, worms, viruses and application-level attacks. Deploying network-based security can protect these at-risk systems–without requiring infrastructure replacement.
Download this white paper 
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDG Connect IDG World Expo Infoworld
The Industry Standard ITworld JavaWorld LinuxWorld MacUser Macworld Network World PC World Playlist
Copyright © 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.