Viruses have been found on RWE's office computers in the system used to simulate the movement of nuclear fuel rods at Gundremmingen NPP. Security experts have determined that they are not dangerous because the control system is not connected to the Internet.
The malware was found on a simulator and on 18 USB drives used as removable storage for office computers.
I had to check more than 1000 computers for viruses and thoroughly clean them. Fortunately, none of the systems directly related to the control of nuclear reactors were damaged.
The main culprit behind the noise was the W32.Ramnit and Conficker malware. The first one "debuted" in 2010. It is a remote access tool that cybercriminals use to steal data. Conficker is 2 years older and focuses on stealing registration names and financial data.
Because the infected systems were isolated, the viruses were unable to activate and did not cause serious damage.