Search results
Results From The WOW.Com Content Network
Sandworm is an advanced persistent threat operated by Military Unit 74455, a cyberwarfare unit of the GRU, Russia's military intelligence service. [3] Other names for the group, given by cybersecurity researchers, include APT44 , [ 4 ] Telebots , Voodoo Bear , IRIDIUM , Seashell Blizzard , [ 5 ] and Iron Viking .
On December 23, 2015, the power grid in two western oblasts of Ukraine was hacked, which resulted in power outages for roughly 230,000 consumers in Ukraine for 1-6 hours. The attack took place during the ongoing Russo-Ukrainian War (2014-present) and is attributed to a Russian advanced persistent threat group known as "Sandworm". [1]
A sandworm is a fictional extraterrestrial creature that appears in the Dune novels written by Frank Herbert, first introduced in Dune (1965). Sandworms are colossal, worm-like creatures that live on the desert planet Arrakis .
An advanced persistent threat (APT) is a stealthy threat actor, typically a state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period.
The sandworm’s open mouth consists of a ring of long, sharp “teeth” with a small hole in the middle, where a hand could reach inside and grab popcorn.
The design of the sandworm’s skin layer was inspired by “dry lakes,” says Vermette. “The texture was soft and textured with scales, enough for the skin to be pulled, and we had openings ...
A Russian-based group known as Sandworm (aka Voodoo Bear) is attributed with using BlackEnergy targeted attacks. The attack is distributed via a Word document or PowerPoint attachment in an email, luring victims into clicking the seemingly legitimate file.
In February 2021 a report by Dragos stated that Sandworm has been targeting US electric utilities, oil and gas, and other industrial firms since at least 2017 and were successful in breaching these firms a "handful" of times. [100] [101] In May 2021, the Colonial Pipeline ransomware attack was perpetrated by Russian language hacking group DarkSide.