APT44: Operations Against Ukraine
A hacking group responsible for cyberattacks on water systems in the United States, Poland, and France is linked to the Russian military, according to a cybersecurity firm, indicating that Moscow may escalate its efforts to target opponents’ infrastructure.
Sandworm has long been known as Unit 74455 of Russia’s GRU military intelligence organization, and it has been linked to attacks on Ukrainian telecom providers as well as the NotPetya malware campaign, which damaged companies worldwide.
Global Scope
Researchers at Mandiant, a security business owned by Google Cloud, discovered that Sandworm appears to have a direct link to multiple pro-Russia hacktivist organizations. Mandiant believes Sandworm can “direct and influence” the activities of Russia’s Cyber Army.
One of them is the Cyber Army of Russia Reborn (CARR), also known as the Cyber Army of Russia, which has claimed responsibility for cyberattacks against water infrastructure this year.
One attack occurred in Muleshoe, Texas, causing a water tower to overflow and spilling tens of thousands of gallons of water down the street.
Ramon Sanchez, the city’s manager, told The Washington Post that the password for the system’s control system interface had been compromised, adding, “You don’t think that’s going to happen to you.” Around the same time, two additio
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.