Two separate malware infections were discovered this week at RWE’s 2688 MW Gundremmingen plant (pictured), located about 120 km northwest of Munich.
RWE said the viruses, known by cybersecurity analysts as W32.Ramnit and Conficker, failed to threaten the plant’s operations because it is not connected to the internet, and that the shutdown was only a precaution.
The viruses were found in a computer system containing data visualization software used in moving nuclear fuel rods. In total, 18 removable data drives were found to be infected.
RWE said it had bumped up its cybersecurity measures after the discovery.
Both viruses target Microsoft Windows systems. W32.Ramnit was designed to steal files from infected computers, while Conficker is a self-replicating virus that spreads itself across networks automatically.