This two-hour documentary released Friday, July 8, and playing inselected theaters and streaming online, traces the history andconsequences of Stuxnet, a sophisticated piece of malware unleashed onthe world in 2010. Before you yawn and click away, there's an importantfeature of the Stuxnet worm and others like it that makes this story ofvital interest to you. Stuxnet was not designed to invade your home oroffice computer, but to attack the industrial control systems thatmanage critical infrastructure. These systems make sure trains andairplanes don't crash, control car and truck traffic, maintain oil andgas production, manage industrial automation, ensure you have water tobrush your teeth with and electricity to run the coffee maker, keeplife-saving medical technology operating, and, of course, give youaccess to the internet. Cyber-attacks on these systems causereal-world, physical destruction, even widespread death. Behind theComputer Screen The Stuxnet storystill highly classified, but revealedover timebegan with an effort by the United States and Israel tothwart Iran's ability to produce nuclear weapons by destroyingcentrifuges at the country's Natanz uranium enrichment facility. Thesoftware was diabolically clever, virtually undetectable, andessentially untraceable. In theory. The fact that it was a Zero Dayexploit--that is, that the attack would begin before the softwareproblem was discovered and attempts made to fix it or shut it down--andthat the Stuxnet code contained not one, but four zero day features,was remarkable. Once it was inside, it worked autonomously; even theattacker could not call it back. The Israelis, apparently, wereimpatient. They assassinated Iranian nuclear scientists, and theychanged the Stuxnet code, and it spread. It ended up infectingcomputers worldwide, at which point it was no longer secret, peoplewere looking for it, and the Russians and others found it. "Israel blewthe (malware's) cover and it could have led to war," the film says.Another consequence is that the day when something similar can beunleashed on us grows ever closer. It will come from one of threesources: Cybercriminals, in it for the money Activists, intent onmaking a political point or Nation-states seeking intelligence oropportunities for sabotage. U.S. security agencies are not complacent.While they talk publicly about our cyber-defenses, in fact, there is alarge (unexamined) effort to develop offensive cyber-weapons. There arereports of an even more draconian cyber-weapon embedded throughoutIranian institutions. Warding off its activation is believed a primaryreason the Iranians finally struck a nuclear agreement. Certainly itprompted the rapid development surge in Iran's cyberarmy. In puttingthis story together, writer and director Alex Gibney interviewed formerhigh-ranking U.S. and Israeli security officials, analysts fromSymantec who teased the code apart, personnel from Russia's KasperskyLab, and many others, including CIA/NSA/DoD officials unable to speakon camera. "Fear Does Not Protect Us" The documentary makes apersuasive case for who holds the smoking Stuxnet gun, but it alsosuggests that finding fault is not the primary issue. The climate ofinternational secrecy around Stuxnetand the inevitable clones thatwill followmakes an open discussion about them impossible. Nor does itallow development of rational strategies for managing the risks,regardless of how urgently needed those strategies are. Cyber-riskmanagement will never be easy, but as one of the film's experts pointsout, "it will never happen unless you start." The subject is "hideouslyoverclassified," says Michael Hayden, former director of both the NSAand CIA. (The climate of secrecy is so extreme that even the U.S.Department of Homeland Security cyber team was unaware that Stuxnetoriginated across town and spent countless resources trying to track itdown.) We, of all nations, need this debate, because there is no morevulnerable country in the world, when it comes to systems'connectedness. "Evil and good live side by side," says an anonymousagent of the Israeli intelligence agency, Mossad. Keeping secrets is agood way to prevent being able to tell one from the other.
Zero Days (2016) 720p YIFY Movie
Zero Days (2016)
A documentary focused on Stuxnet, a piece of self-replicating computer malware that the U.S. and Israel unleashed to destroy a key part of an Iranian nuclear facility, and which ultimately spread beyond its intended target.
IMDB: 7.825 Likes
- Genre: Documentary |
- Quality: 720p
- Size: 1.38G
- Resolution: 1280x720 / 23.976 (23976/1000) fpsfps
- Language: French
- Run Time: 116
- IMDB Rating: 7.8/10
- MPR: Normal
- Peers/Seeds: 0 / 1
The Synopsis for Zero Days (2016) 720p
Documentary detailing claims of American/Israeli jointly developed malware Stuxnet being deployed not only to destroy Iranian enrichment centrifuges but also threaten attacks against Iranian civilian infrastructure. Adresses obvious potential blowback of this possibly being deployed against the US by Iran in retaliation.
The Director and Players for Zero Days (2016) 720p
The Reviews for Zero Days (2016) 720p
Reviewed byVictoria WeisfeldVote: 9/10/10
Saw this at the Berlinale 2016, where it was programmed as part of the official Competition section. I have to start with a full disclaimer, by confessing that information security has been my full time occupation for at least 25 years. As such it was not my intention to learn something new when viewing this documentary about the infamous Stuxnet worm, jointly developed by Israel and US, targeting Iranian reactors and obstructing the production of nuclear material. Yet I'm very interested in each and every vehicle (movie, book, newspaper article, whatever) to make non-IT people aware of the issues at hand, if only to provide material for an open debate about the pros and cons of "cyber warfare" with much wider implications than the average layman realizes.
As observed with previous movies about IT-related issues (WikiLeaks, Snowden, Steve Jobs etcetera) it is very difficult to sit it through while being (like myself) someone who worked in IT all his life. We saw numerous fragments of Assembler, flashing lights from network equipment, heavily populated cable bundles, and many screens showing various sorts of abracadabra, all supposedly intending to look technical for an average layman. Another problem is that several talking heads ducked when asked specific questions about Stuxnet, the latter being the main topic of this movie. Most of them had the usual excuse *Even when I knew about it, I cannot elaborate". Luckily, we heard not once the excuse "I can tell you about it but after that I have to shoot you", usually intended as a humorous escape from hot questions without appearing offensive or overly defiant. Several high ranking officials only wanted to speak out in general terms, thereby avoiding Stuxnet and other concrete projects, by explaining what they found wrong, especially about the secrecy that most found exaggerated and unnecessary. As such, their contributions were still useful, albeit not exactly touching the subject at hand.
Nevertheless, I heard a few new things I had not thought about yet. Firstly, Stuxnet was not designed to become so visible as it did. People at the NSA were furious when seeing that Israel extended v1.1 of the software to be more aggressive, making it spread and allowing it to surface, while that never had been the intention. The net result is that other countries may find justification to counter with similar software, now the US has provided for a precedent. Secondly, many people in CIA and NSA express their concerns about over-classification, preventing an open debate on future policies and rules of engagement in cyber space, like similar rules developed in the past for army, navy and air force. Cyber weapons are the fourth category, and it may take 20 to 30 years to create clear rules and policies for it. Lastly, the net effect that Stuxnet had on Iranian nuclear program, has proved to be negligible in the long run. There was a noticeable dip in the production statistics, but it triggered Iran to invest extra in centrifuges. An extra side effect was that Iran invested in cyber powers of their own, by attracting talented people on this field of expertise. As of now, it looks like they succeeded in overpowering the western world in this so-called cyber war. In other words, due to Stuxnet we lost our head start, and it is doubtful we will ever regain that.
There was one talking head with distorted voice and face, who appeared many times throughout the story. In hindsight, she was reading collected texts from several people working in NSA, CIA etcetera, all of them having useful insights on the matter but unable to come forward. Being reasonably versed in these issues, I am of the opinion that these texts sound genuine and seem to really come from people with intimate knowledge, which would otherwise be kept from the public. One example is that they internally made fun about "air gapped", the common defense against infections from the outside. They knew several ways to get over this obstacle, e.g. by infecting vendors responsible for installing and updating software in the plant, more or less working like so-called watering hole attacks. Reading these texts as done here, was an artificial but necessary addition to the documentary. In a final scene the one reading the texts revealed herself as an actress who had no personal involvement in the issues, but was effectively used as a vehicle to get this information across. During the press conference organized by the Berlinale it was explained that this was the only way to obtain and release this information, if only to protect the sources since harsh policies have been issued to deal with information leakage.
All in all, I'm not sure the message will land where it should land, namely with non-IT people who should know about the implications of "cyber warfare", having an impact on our future that cannot be underestimated. I don't think that a documentary that takes nearly 2 hours, will achieve said goal. Nevertheless, I applaud every honest attempt. The documentary is well made and tries to present a balanced view on the matter. Well made, but probably shooting over everyone's head and defeating its well-intended purposes.
"If you really are interesteD in the stuxnet please see the seminar forGoogle people by Carey Nachenberg instead. That gives you the realstory without any politics."
The Seminar for Google, prepared by Carey Nachenberg of SymantecCorporation... one of the very entities involved in making the malwareno doubt.
That's like asking Hitler to do a seminar on why Nazi's aren't so bad,and why American's who went to war with them are just beinganti-German.
After watching this film I can honestly say as an IT professional forthe past 25 years I'm that much more going to never touch a version ofWindows above 7 64 bit--due to it's malware-like behaviour. Cortana,the windows 10 AI, which is not optional; it has it's groundworkinstalled by Windows 8 hence your free upgrade. It's a prototype of itreally and a bunch of windows 7 updates are almost just as bad if youlet them install, but thankfully there is still the option with thatversion.
Capitalism is one big circle jerk, and if your name isn't followed byTM or INC or LLC, there's a good chance you're not getting anything outof it.
Everyone develops malware, it's the new cold war; and everyone whodevelops it has a corporate logo and makes a profit off it. Be goodlittle consumers now, and go spend money on their products.