:

ANCIENT MALWARE PREDATES STUXNET IN IRAN NUCLEAR PLOT

SECURITY DESK1 MIN READ
THU, APR 23, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

Researchers have deciphered Fast16, a sophisticated sabotage malware created in 2005 that likely targeted Iran's nuclear program years before the infamous Stuxnet attack. The discovery suggests a coordinated cyber campaign against Tehran's atomic facilities.

Security researchers cracked Fast16, mysterious code designed to silently corrupt calculations and simulations in industrial software. The malware predates Stuxnet—the 2010 worm widely attributed to US and Israeli intelligence—by five years. Fast16 was engineered to tamper with computational processes without triggering detection, making it ideal for sabotaging nuclear research. Experts believe US intelligence or an allied nation deployed the code, though no official confirmation exists. The discovery reveals a longer history of cyber operations targeting Iran's nuclear infrastructure than previously known. It suggests multiple coordinated attacks spanning years, not a single strike. Researchers indicate Fast16 could have impacted simulations used in nuclear weapons development or reactor operations. The finding underscores how early-stage cyber warfare was deployed against strategic targets long before such tactics became commonplace.

■ SOURCES

Wired

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

A new browser fingerprinting vector has emerged in Chromium 148, where the Math.tanh function produces different results across operating systems. This discrepancy can be exploited to identify a user's underlying OS without explicit permission.

3H AGOIndustry Desk

Kaseya is hosting a webinar on strengthening MSP resilience through SaaS backups and business continuity strategies. The session focuses on how recovery capabilities prove critical when security defenses are breached.

9H AGOSecurity Desk

A new variant of RedHook Android malware abuses Wireless ADB (Android Wireless Debugging) to gain shell-level privileges without requiring a computer connection. This represents a significant escalation in the malware's capabilities.

10H AGOSecurity Desk

Fraudsters are creating convincing counterfeit news articles impersonating major publishers like the Guardian to direct social media users to bogus investment sites. The fake stories feature fabricated celebrity endorsements and financial narratives designed to establish credibility.

15H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.