The US and Israel created Stuxnet, the world's first cyber weapon, to destroy Iran's nuclear centrifuges

In 2010, cybersecurity researchers stumbled onto something unprecedented: lines of code so complex and purposeful that it could only have been created by a nation-state. That discovery would eventually force governments to admit they had unleashed the world's first true cyber weapon, and in doing so, fundamentally changed how nations wage covert war.

The malware, called Stuxnet, targeted the uranium enrichment centrifuges at Iran's Natanz nuclear facility. It was engineered to infiltrate Siemens SCADA systems—the industrial control computers that manage critical infrastructure—and subtly manipulate the spin speed of centrifuges while simultaneously fooling operators into thinking everything was running normally. The result was devastating: approximately 1,000 centrifuges were destroyed, dealing a serious blow to Iran's nuclear ambitions without a single conventional weapon being fired.

For years, officials denied involvement. When Kaspersky Lab researchers publicly identified Stuxnet in 2010, both the United States and Israel maintained official silence on the matter. The sophistication of the attack demanded resources only a wealthy nation with advanced cyber capabilities could muster, yet no government would claim responsibility. Speculation swirled, but definitive proof remained classified.

That changed in 2013 when Edward Snowden's revelations exposed the classified "Olympic Games" program. Documents confirmed what many had suspected: the United States and Israel had jointly developed Stuxnet as part of a covert operation that began under the Bush administration and continued under Obama. The program represented an unprecedented collaboration between two nations to conduct sustained cyber warfare against a third country's nuclear infrastructure, all without that country ever firing a shot.