A significant IT outage has disrupted travel, banking, and healthcare services worldwide, while in Iran industrial, public and private systems appear to be running normally except government's intentional interference with Internet.
What happened globally?
A global IT outage hit various industries, including airlines, hospitals, retailers, and other businesses. Nearly 1,400 flights were canceled on Friday, and essential banking, healthcare, and retail services were also affected.
Elon Musk, CEO of Tesla and X, has described Friday’s incident as the "biggest IT failure in history."
What caused the crisis?
Two significant issues involving Microsoft's widely used cloud systems have occurred in quick succession. First, an outage affected Microsoft clients using the Azure cloud service. Second, Windows devices experienced problems shortly after due to an update from CrowdStrike's Falcon antivirus software, designed to protect against malicious attacks.
Microsoft said it has addressed the root cause, but some services still face residual issues. Despite the fix, cyber-security experts warn that restoring full functionality will require significant effort.
Why is Iran unaffected by this global crisis?
Iran is unaffected by the global IT outage mainly because it uses a different system to control, monitor, and analyze industrial devices and processes.
Iran relies on SCADA (Supervisory Control and Data Acquisition) systems, which are crucial for managing infrastructure like power grids, water treatment facilities, and the petroleum industry, Sahar Tahvili, an AI researcher, told Iran International.
What exactly is SCADA, and how does it differ from a cloud system?
SCADA focuses on the local, real-time control and monitoring of physical systems. It operates within a limited connectivity framework, typically confined to a local or regional network, processing data in a central computer system to manage and optimize operations. Tahvili, the co-author of “Artificial Intelligence Methods for Optimization of the Software Testing Process,” told Iran International.
Conversely, a cloud system emphasizes remote access, extensive data storage, and powerful computing capabilities over the Internet. It easily scales to handle large volumes of data and users, providing broad connectivity and resource flexibility that extends beyond the constraints of local networks.
But why is Iran using a different system?
According to Tahvili, Iran relies on SCADA systems for industrial and facility-based processes primarily due to international sanctions and the lack of advanced infrastructure and technology management options.
Do other countries utilize SCADA systems?
Other countries might use SCADA mostly for managing the manufacturing process but not as the main system for managing and monitoring their industrial and infrastructure processes.
Is SCADA a domestic system? If not, how can Iran utilize it despite sanctions?
The expert explained that SCADA is not Iran's invention. It consists of hardware and software components that can be sourced from various international suppliers. In response to sanctions, Iran might have developed its own SCADA systems or adapted existing ones to meet its needs.
“This involves using local expertise to design, manufacture, and maintain SCADA components. Iran might procure SCADA components and software through third-party suppliers from countries that do not adhere to the same sanctions or through indirect channels, making it possible to bypass certain restrictions,” according to the AI researcher.
Iran seems to have deftly navigated the recent global IT chaos, but what is the unseen factor at play here?
Iran's National Center for Cyberspace presented the situation positively, stating, "No damage or disruption in services to the public has been reported in Iran. Due to Western sanctions, Iran has been barred from receiving these services for years. Consequently, local, alternative services were developed by the country's youth and experts and are currently operational."
The statement further highlighted, "Additionally, the country has developed robust capabilities in providing indigenous cloud services, which are now ready for export to other countries. Iran is prepared to share its expertise and export products in this field."
However, Tahvili holds a different perspective.
She remarked, "SCADA systems are often considered outdated and face several challenges, particularly regarding integration and compatibility with newer technologies such as cloud computing." As industries increasingly move towards advanced data analytics and cloud-based solutions, "the compatibility of SCADA systems becomes a significant concern," Tahvili explained. This integration challenge can "lead to inefficiencies and limit the ability to leverage cutting-edge technological advancements fully."
She further highlighted that "the connectivity of SCADA systems to corporate networks and the internet introduces severe security vulnerabilities." While remote monitoring and control are essential, this connectivity "exposes SCADA systems to external threats, including cyber-attacks and malicious software like the Stuxnet worm." Referring to the infamous Stuxnet incident in 2010, Tahvili pointed out that it "specifically targeted SCADA systems and caused substantial damage to Iran's nuclear program."
Tahvili emphasized the critical need for robust cybersecurity measures, stating, "Several security breaches have highlighted the need to protect these critical infrastructures." Despite SCADA systems being essential for Iran's industrial processes due to sanctions and limited infrastructure, their "outdated nature and compatibility issues with new technologies pose significant challenges." Additionally, she warned that "the security vulnerabilities arising from their connectivity to broader networks underscore the urgent need for enhanced security protocols to safeguard against potential threats."