Latest Sandworm news

Russian Sandworm hackers targeted 20 critical orgs in Ukraine

Russian hacker group Sandworm aimed to disrupt operations at around 20 critical infrastructure facilities in Ukraine, according to a report from the Ukrainian Computer Emergency Response Team (CERT-UA).
- Bill Toulas
- April 22, 2024
- 08:30 AM
- 0
Russian Sandworm hackers pose as hacktivists in water utility breaches

The Sandworm hacking group associated with Russian military intelligence has been hiding attacks and operations behind multiple online personas posing as hacktivist groups.
- Bill Toulas
- April 17, 2024
- 01:08 PM
- 0
Russian hackers wiped thousands of systems in KyivStar attack

The Russian hackers behind a December breach of Kyivstar, Ukraine's largest telecommunications service provider, have wiped all systems on the telecom operator's core network.
- Sergiu Gatlan
- January 04, 2024
- 02:39 PM
- 1
Russian hackers switch to LOTL technique to cause power outage

Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques that enable reaching the final stage of the attack quicker and with less resources
- Ionut Ilascu
- November 09, 2023
- 06:12 AM
- 0
Google links WinRAR exploitation to Russian, Chinese state hackers

Google says that several state-backed hacking groups have joined ongoing attacks exploiting a high-severity vulnerability in WinRAR, a compression software used by over 500 million users, aiming to gain arbitrary code execution on targets' systems.
- Sergiu Gatlan
- October 18, 2023
- 11:00 AM
- 0
Russian Sandworm hackers breached 11 Ukrainian telcos since May

The state-sponsored Russian hacking group tracked as 'Sandworm' has compromised eleven telecommunication service providers in Ukraine between May and September 2023.
- Bill Toulas
- October 16, 2023
- 02:06 PM
- 0
GRU hackers attack Ukrainian military with new Android malware

Hackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named 'Infamous Chisel.
- Bill Toulas
- August 31, 2023
- 10:48 AM
- 0
Russian hackers use WinRAR to wipe Ukraine state agency’s data

The Russian 'Sandworm' hacking group has been linked to an attack on Ukrainian state networks where WinRar was used to destroy data on government devices.
- Bill Toulas
- May 03, 2023
- 04:41 PM
- 1
Google: Ukraine targeted by 60% of Russian phishing attacks in 2023

Google's Threat Analysis Group (TAG) has been monitoring and disrupting Russian state-backed cyberattacks targeting Ukraine's critical infrastructure in 2023.
- Bill Toulas
- April 20, 2023
- 02:47 PM
- 0
Hackers use new SwiftSlicer wiper to destroy Windows domains

Security researchers have identified a new data-wiping malware they named SwiftSlicer that aims to overwrite crucial files used by the Windows operating system.
- Ionut Ilascu
- January 28, 2023
- 10:21 AM
- 5
Ukraine: Sandworm hackers hit news agency with 5 data wipers

The Ukrainian Computer Emergency Response Team (CERT-UA) found a cocktail of five different data-wiping malware strains deployed on the network of the country's national news agency (Ukrinform) on January 17th.
- Sergiu Gatlan
- January 27, 2023
- 01:10 PM
- 0
Ukraine links data-wiping attack on news agency to Russian hackers

The Computer Emergency Response Team of Ukraine (CERT-UA) has linked a destructive malware attack targeting the country's national news agency (Ukrinform) to Sandworm Russian military hackers.
- Sergiu Gatlan
- January 18, 2023
- 02:57 PM
- 0
Microsoft warns of Russian cyberattacks throughout the winter

Microsoft has warned of Russian-sponsored cyberattacks continuing to target Ukrainian infrastructure and NATO allies in Europe throughout the winter.
- Sergiu Gatlan
- December 05, 2022
- 07:44 PM
- 0
New ransomware attacks in Ukraine linked to Russian Sandworm hackers

New ransomware attacks targeting organizations in Ukraine first detected this Monday have been linked to the notorious Russian military threat group known as Sandworm.
- Sergiu Gatlan
- November 25, 2022
- 01:01 PM
- 3
Russian military hackers linked to ransomware attacks in Ukraine

A series of attacks targeting transportation and logistics organizations in Ukraine and Poland with Prestige ransomware since October have been linked to an elite Russian military cyberespionage group.
- Sergiu Gatlan
- November 10, 2022
- 02:47 PM
- 0
Russian Sandworm hackers pose as Ukrainian telcos to drop malware

The Russian state-sponsored hacking group known as Sandworm has been observed masquerading as telecommunication providers to target Ukrainian entities with malware.
- Bill Toulas
- September 19, 2022
- 02:50 PM
- 0
Russian hackers start targeting Ukraine with Follina exploits

Ukraine's Computer Emergency Response Team (CERT) is warning that the Russian hacking group Sandworm may be exploiting Follina, a remote code execution vulnerability in Microsoft Windows Support Diagnostic Tool (MSDT) currently tracked as CVE-2022-30190.
- Bill Toulas
- June 13, 2022
- 10:28 AM
- 1
US offers $10 million reward for tips on Russian Sandworm hackers

The U.S. is offering up to $10 million to identify or locate six Russian GRU hackers who are part of the notorious Sandworm hacking group.
- Lawrence Abrams
- April 26, 2022
- 05:20 PM
- 0
Sandworm hackers fail to take down Ukrainian energy provider

The Russian state-sponsored hacking group known as Sandworm tried on Friday to take down a large Ukrainian energy provider by disconnecting its electrical substations with a new variant of the Industroyer malware for industrial control systems (ICS) and a new version of the CaddyWiper data destruction malware.
- Bill Toulas
- April 12, 2022
- 08:03 AM
- 0
ASUS warns of Cyclops Blink malware attacks targeting routers

Multiple ASUS router models are vulnerable to the Russia-linked Cyclops Blink malware threat, causing the vendor to publish an advisory with mitigations for the security risk.
- Bill Toulas
- March 17, 2022
- 01:12 PM
- 0