An unauthorised file-sharing program installed on a PC compromised the security of an unnamed power station in Japan, local media has reported.
It is believed that files detailing information on the Chubu Electric Power Company’s security procedures and plant layout were compromised by a P2P (peer-to-peer) program, Share.
Other compromised data included the names and addresses of security staff, and the location of the plant’s control room, all of which were posted on the internet.
The virus has not been named, but is believed to have inadvertently infected the PC of a single member of staff. Ironically, this staff member was working for an out-sourced security firm supposed to guard the plant.
The company runs nuclear power stations in Japan, although the plant affected in the incident was not in this category of risk.
Last year, however, a breach occurred that was potentially more serious when Mitsubishi Electric leaked 40MB of data, some of which related to a nuclear power station in Tsuruga. Again, the culprit was a single PC using a P2P program that allowed a virus to sneak through conventional data defences.
This story first appeared on Macworld.co.uk