Threat hunters at Mandiant are shining the spotlight on a pair of previously undocumented operational technology (OT) attacks last October by Russia’s “Sandworm” hackers that caused an unplanned power outage and coincided with mass missile strikes on critical infrastructure across Ukraine. The attacks, which spanned several months and culminated in two disruptive events on October ..
Tag : sandworm
Malware hunters in Google’s Threat Analysis Group (TAG) say government-backed hacking groups from different countries are feasting on a well-documented security flaw in the popular WinRAR file archiving utility more than three months after patches were released. The WinRAR code execution vulnerability, tracked as CVE-2023-38831, was fixed in July after zero-day exploitation was detected but ..
Cloud computing giant AWS says an internal threat intel decoy system called MadPot has been used successfully to trap malicious activity, including nation state-backed APTs like Volt Typhoon and Sandworm. MadPot, the brainchild of AWS software engineer Nima Sharifi Mehr, is described as “a sophisticated system of monitoring sensors and automated response capabilities” that entraps malicious ..
Set 01, 2023 Marina Londei Attacchi, In evidenza, Intrusione, Minacce, News 0 Le agenzie di sicurezza del Regno Unito, Stati Uniti, Nuova Zelanda, Canada e Australia hanno individuato un nuovo malware mobile, Infamous Chisel, che colpisce i dispositivi Android. Il malware è attualmente utilizzato in una campagna contro la milizia ucraina. Sembra che dietro il ..
Getty Images reader comments 9 with Researchers have uncovered malware designed to disrupt electric power transmission and may have been used by the Russian government in training exercises for creating or responding to cyberattacks on electric grids. Known as CosmicEnergy, the malware has capabilities that are comparable to those found in malware known as Industroyer ..
Apr 13, 2022 Redazione news Attacchi, News, RSS 0 Il gruppo di cyber criminali Sandworm, collegato al governo russo, ha cercato di interrompere l’operatività di un’importante azienda energetica ucraina Per l’attacco, come riporta Bleeping Computer, i pirati di Sandworm hanno usato una nuova versione del malware Industroyer per sistemi di controllo industriale (o ICS da ..
Getty Images | Sundry Photography reader comments 78 with 40 posters participating Share this story More than half a decade has passed since the notorious Russian hackers known as Sandworm targeted an electrical transmission station north of Kyiv a week before Christmas in 2016, using a unique, automated piece of code to interact directly with ..
reader comments 78 with 42 posters participating Share this story The FBI remotely accessed and disinfected US-located devices running a powerful new strain of Russian state botnet malware, federal authorities said Wednesday. Those authorities added that the Kremlin was using the malware to wage stealthy hacks of its adversaries. The infected devices were primarily made ..
Enlarge / The logo of the French national cybersecurity agency Agence Nationale de la securite des systemes d’information(ANSSI) taken at ANSSI headquarters in Paris. reader comments 33 with 18 posters participating Share this story The Russian military hackers known as Sandworm, responsible for everything from blackouts in Ukraine to NotPetya, the most destructive malware in ..
reader comments 95 with 59 posters participating Share this story Six men accused of carrying out some of the world’s most destructive hacks—including the NotPetya disk wiper and power grid attacks that knocked out electricity for hundreds of thousands of Ukrainians—have been indicted in US federal court. The indictment said that all six men are ..