27 Apr 2022

US Offers $10m for Russian NotPetya Sandworm Team

US authorities are offering $10 million for anyone with information that could help locate or identify six members of a Russian state hacking group responsible for the NotPetya attacks. The award was recently released, and the Department of State’s Rewards for Justice has pledged to financially compensate those with information

Read More
14 Apr 2022

Ukrainian Energy Supplier Targeted by New Industroyer Malware

According to cybersecurity vendor ESET, a Ukrainian energy supplier has been targeted by a new variant of the Industroyer malware, Industroyer2. ESET discovered the cyberattack in collaboration with the Ukrainian Computer Emergency Response Team (CERT-UA). The malware is primarily used by the Sandworm APT group, which is linked to the

Read More
12 Apr 2022

Sandworm rolls out Industroyer2 malware against Ukraine

A new variant of the Industroyer malware, used to great effect against the Ukrainian energy sector by Russia’s Sandworm or Voodoo Bear advanced persistent threat (APT) group in 2016, has been identified by researchers from ESET, working in tandem with Ukraine’s national Computer Emergency Response Team, CERT-UA. Predictably dubbed Industroyer2, it

Read More
07 Apr 2022

US Action Disrupts Russian Botnet Cyclops Blink

US authorities claim to have disrupted a botnet controlled by the Russian state. The disruption occurred as a result of a court- authorized operation that took place in March. The botnet, called Cyclops Blink, was first discovered in February and tracked back to the Sandworm team. Sandworm is a malicious

Read More
20 Oct 2020

US charges Russian GRU officers for NotPetya, other major hacks

On Monday, the Justice Department announced that a federal grand jury had charged six Russian intelligence officers labeled the Sandword team responsible for notoriously destructive attacks spanning the globe. The group has been traced back to the 2017 NotPetya outbreak that caused over $1 billion in damage to US organizations

Read More
01 Aug 2018

Kremlin Hackers Take Aim at the Swiss Lab That’s Working the Skripal Poisoning Case

A state-backed Russian hacking group that targeted the Ukrainian power grid is now “targeting a Swiss laboratory that’s helping investigators solve the March poisoning of Sergei Skripal and his daughter in London. Called Sandworm, the group has been trying to phish employees of Switzerland’s Spiez Laboratory, a chemical-and biological-weapons facility that

Read More