Sandworm (hacker group)
This article provides insufficient context for those unfamiliar with the subject.(October 2020) |
Formation | c. 2004–2007[1] |
---|---|
Type | Advanced persistent threat |
Purpose | Cyberespionage, cyberwarfare |
Headquarters | 22 Kirova Street |
Region | Russia |
Methods | Zero-days, spearphishing, malware |
Official language | Russian |
Parent organization | GRU |
Affiliations | Fancy Bear Unit 26165 |
Formerly called | Voodoo Bear Sandworm Iron Viking Telebots |
The Sandworm Team, also known as Unit 74455, is a Russian cybermilitary unit of the GRU.[1]
The team is believed to be behind the December 2015 Ukraine power grid cyberattack,[2][3][4] the 2017 cyberattacks on Ukraine using the Petya malware[5] and the cyberattack on the 2018 Winter Olympics opening ceremony.[6]
On October 19, 2020 a US-based grand jury released an indictment charging six officers of the GRU with cybercrimes.[7][8][9]
See also
References
- ^ Greenberg, Andy (2019). Sandworm: a new era of cyberwar and the hunt for the Kremlin's most dangerous hackers. Knopf Doubleday. ISBN 978-0-385-54441-2.
- ^ "Hackers shut down Ukraine power grid". www.ft.com. 5 January 2016. Retrieved 2020-10-28.
- ^ Volz, Dustin (25 February 2016). "U.S. government concludes cyber attack caused Ukraine power outage". Reuters. Retrieved 2020-10-28.
- ^ Hern, Alex (7 January 2016). "Ukrainian blackout caused by hackers that attacked media company, researchers say". The Guardian. ISSN 0261-3077. Retrieved 2020-10-28.
- ^ "The Untold Story of NotPetya, the Most Devastating Cyberattack in History". Wired. ISSN 1059-1028. Retrieved 2020-10-28.
- ^ Greenberg, Andy. "Inside Olympic Destroyer, the Most Deceptive Hack in History". Wired. ISSN 1059-1028. Retrieved 2020-10-28.
- ^ Cimpanu, Catalin. "US charges Russian hackers behind NotPetya, KillDisk, OlympicDestroyer attacks". ZDNet. Retrieved 2020-10-28.
- ^ "Russian cyber-attack spree shows what unrestrained internet warfare looks like". The Guardian. 19 October 2020. Retrieved 2020-10-28.
- ^ "US Indicts Sandworm, Russia's Most Destructive Cyberwar Unit". Wired. ISSN 1059-1028. Retrieved 2020-10-28.