"Researchers on Friday said that Poland's electric grid was targeted by wiper malware, likely unleashed by Russia state hackers, in an attempt to disrupt electricity delivery operations. A cyberattack, Reuters reported, occurred during the last week of December. The news organization said it was aimed at disrupting communications between renewable installations and the power distribution operators but failed for reasons not explained."
"On Friday, security firm ESET said the malware responsible was a wiper, a type of malware that permanently erases code and data stored on servers with the goal of destroying operations completely. After studying the tactics, techniques, and procedures (TTPs) used in the attack, company researchers said the wiper was likely the work of a Russian government hacker group tracked under the name Sandworm."
A cyberattack targeted communications between renewable installations and power distribution operators during the last week of December and reportedly failed for unexplained reasons. Security firm ESET identified the malicious code as a wiper, a type of malware designed to permanently erase code and data on servers to destroy operations. ESET analyzed the malware and associated tactics, techniques, and procedures (TTPs) and attributed the attack to the Russia-aligned Sandworm APT with medium confidence due to strong overlap with prior Sandworm wiper activity. Sandworm previously used BlackEnergy to cause a 2015 Ukraine blackout by penetrating SCADA systems and stopping electricity distribution.
Read at Ars Technica
Unable to calculate read time
Collection
[
|
...
]