Computer worm strikes International Space Station

Filed Under: Malware

Wired has published a fascinating story about malware penetrating computers at the International Space Station on a USB memory stick or compact flash card.

Fortunately, anti-virus software managed to identify the infection and prevent it from spreading unnoticed.

What confuses me is how the malware made it as far as the astronauts in the first place? Surely it should be possible to scan computers and storage devices before they are carried on the Shuttle up to the space station in orbit?

In the past mission control has not held back in preventing astronauts from going into outer space when it has just been suspected they might contract an illness, so why be so lax about a computer viral infection?

After all, it's got to be easier cleaning up a virus infection and ensuring that data has not been corrupted in the relative sanity of mother earth, rather than in zero gravity? And what if the malware had been a piece of malicious code that their anti-virus software had not been able to identify - after all, it must be hard to get regular security updates when you're sitting in a tin can.

Interestingly, Wired quotes NASA spokesman Kelly Humphries as saying, "This is not the first time we have had a worm or a virus. It's not a frequent occurrence, but this isn't the first time."

If there is any good news at all, it's that the malware in question was designed to steal usernames and passwords from computer game players, not something that orbiting astronauts are likely to be spending a lot of time doing. After all, with a view like that who needs to play the likes of World of Warcraft?

Picture credit: NASA

You might like

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Graham Cluley runs his own award-winning computer security blog at, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Follow him on Twitter at @gcluley