Sandworm

Emulating Sandworm’s Prestige Ransomware

| | adversary emulation, Broad-Based Attacks, living off the land, Microsoft, Microsoft Threat Intelligence Center (MSTIC), Poland, Prestige, Ransomware, Russia, Sandworm, Ukraine
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Prestige ransomware since the beginning of its activities in October 2022. Prestige has been observed targeting organizations in the ...
AttackIQ

Emulating the Sabotage-Focused Russian Adversary Sandworm– Part 2

| | adversary emulation, Defense Industrial Base, Financial Services, government, Invasion, Malware, Russia, Sandworm, technology, transportation, Ukraine
AttackIQ has released two new attack graphs that emulate the behaviors exhibited by the highly sophisticated Russian adversary Sandworm during various destructive activities against targets in Ukraine and other countries in the ...
AttackIQ

Emulating the Sabotage-Focused Russian Adversary Sandworm

| | adversary emulation, Energy, government, Media, Media & Entertainment, Resources & Utilities, Russia, Sandworm
AttackIQ has released a new assessment template that emulates the various Post-Compromise Tactics, Techniques, and Procedures (TTPs) associated with the politically motivated Russian adversary Sandworm. The post Emulating the Sabotage-Focused Russian Adversary ...
AttackIQ

Russian Hackers Orchestrate Ukrainian Telecom Giant Attack

| | Cyber threat landscape, cyberattack, cybersecurity breach, Cybersecurity News, Data breaches, Illia Vitiuk, Incident Response, Infiltration Timeline, Kyivstar, Malware Intrusion, Russian hackers, Sandworm, Solntsepek, State-controlled Hacker Group, Telecom Industry Vulnerabilities, Telecom Networks, Telecommunications Security, Ukrainian Telecom Giant Attack
In a recent revelation by Ukraine’s top cyber official, Illia Vitiuk, it has been unveiled that the cyberattack on Kyivstar, Ukraine’s largest telecom operator, had its roots embedded months before the notorious ...
TuxCare

Security Advocacy in the Cloud with Jacob Ansari from Schellman

| | CISO, database as a service (DBaaS), Fancy Bear, FedRAMP, Log4j, Payment Application Assessor, PCI, PCI DSS, PCI DSS v4.0, Podcast, Quality Security Assessor, Sandworm, Schellman, SOC 2, Spring Shell, Vulnerabilities, Vulnerability Management
In this episode, we talk with Jacob Ansari, a Security Advocate at Schellman, where he leads the firm’s security best practices advocacy. He develops and leads educational efforts on security practices, emerging ...
Anitian
Ukraine Beats Russia in Cyberwarfare — at ‘Unprecedented Scale’

Ukraine Beats Russia in Cyberwarfare — at ‘Unprecedented Scale’

| | ddos, GRU, IT Army, NotPetya, PSYOPS, Russia, Sandworm, SB Blogwatch, Tunguska comet should have hit Moscow, Ukraine, Unit 74455
Russia is attacking Ukraine with cyberattacks and psyops. But the scale is pathetic and Ukraine is fighting back—hard ...
Security Boulevard
Hydra MedusaLocker

US Disrupted Russian GRU’s Hydra and Sandworm

| | cyberdefense, Cyberwar, Hydra, Russia, Sandworm, Ukraine
The United States has been largely mum on its offensive capabilities when it comes to cybersecurity operations. But recently, the Director of the National Security Agency and Cyber Command, General Nakasone, referenced ...
Security Boulevard
Russia Tries to Kill Ukraine’s Power Grid—and FAILS

Russia Tries to Kill Ukraine’s Power Grid—and FAILS

| | electric grid, ICS, Industroyer, Industroyer2, power grid, Russia, Sandworm, Sandworm hackers—are they working for the Harkonnen?, SB Blogwatch, SCADA, Ukraine
Russia’s infamous Sandworm APT group is at it again: The scrotes have been trying to cut power to the Ukrainian capital ...
Security Boulevard
Actions Target Russian Govt. Botnet, Hydra Dark Market

Actions Target Russian Govt. Botnet, Hydra Dark Market

| | Ars Technica, Asus, Beserk Bear, Cyclops Blink, Dan Goodin, Dragonfly 2.0, FBI, Federal Security Service, Garantex, German Federal Criminal Police Office, GRU, Hydra Market, Main Intelligence Directorate, Ne'er-Do-Well News, NotPetya, Ransomware, Russian FSB, Sandworm, TRISIS, triton, U.S. Department of Justice, U.S. Department of Treasury, Voodoo Bear, VPNFilter, WatchGuard, Web Fraud 2.0
The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in ...
Krebs on Security
‘Russian’ Wiper Malware: ‘Prelude to war’ in Ukraine

‘Russian’ Wiper Malware: ‘Prelude to war’ in Ukraine

| | false flag, GRU, NotPetya, Now we know why Putin finally did something about that ransomware gang, rEvil, Russia, Sandworm, SB Blogwatch, Ukraine
Ukraine is again under malware attack. And the tactics look strikingly similar to 2017’s NotPetya hack by the Russian GRU ...
Security Boulevard
Load more