Sandworm, a hacker group affiliated with Russia’s Main Directorate of the General Staff of the Armed Forces (GRU), has attempted to target a dozen critical infrastructure enterprises across Ukraine to disrupt the energy, water and heating supply.

According to the Computer Emergency Response Team of Ukraine (CERT-UA), the hacks were ultimately aimed at disabling the information and communication systems (ICS) of a dozen enterprises in 10 Ukrainian regions by first targeting companies within the supply chains and obtaining primary access to the system.

“The final plan of the enemy was to disable the ICS equipment, which should cause even more damage to Ukraine against the background of spring missile attacks on critical infrastructure,” reads the agency’s report.

The agency called for Ukrainians to “take measures to protect themselves and their data” and gave a list of recommendations to safeguard their cybersecurity, such as using multi-factor authentication and implementing a “zero trust” approach that requires strict verification while granting any user access for enterprises.

Advertisement

It’s believed the Sandworm group was also behind the infamous NotPetya attack, a malware disguised as ransomware that demands payment from victims, but in reality, has no functioning recovery feature and would simply erase user data regardless of payment.

Cyberattacks have been commonplace throughout the war in Ukraine, with hacker groups affiliated with either government launching cyberattacks on private enterprises and critical infrastructure.

Russian Spy Couple Helped Kremlin’s Intelligence Organize Sabotage in Europe
Other Topics of Interest

Russian Spy Couple Helped Kremlin’s Intelligence Organize Sabotage in Europe

A years-long Czech investigation has revealed that two Russian spies who settled in the Czech Republic collected information for Russian intelligence that led to bombings and poisoning.

In December, another Russian hacker group launched one of the largest cyberattacks on Ukraine to date against Ukraine’s telecom giant Kyivstar. The attack destroyed part of Kyivstar’s infrastructure and left thousands without internet access for days. The hack also reportedly disrupted the air siren warning system in some regions, where sirens were not activated prior to Russian airstrikes.

To suggest a correction or clarification, write to us here
You can also highlight the text and press Ctrl + Enter
Leo Chiu
Leo Chiu
Leo Chiu is a news reporter residing in Eastern Europe since 2015 with a profound interest in geopolitics, having witnessed two presidential elections in Belarus and visited numerous contested regions worldwide. He believes in the human side of journalism and that there's a story to be told behind every number and statistic.
Read Next
'Russia's Military Setback is Apparent' - France Estimates 150,000 Russian Soldiers Killed in Ukraine War in Ukraine
'Russia's Military Setback is Apparent' - France Estimates 150,000 Russian Soldiers Killed in Ukraine
By Kyiv Post
10h ago
Ukrainian Special Ops Hits Two Russian Buk Anti-Aircraft Missile Complexes Worth Millions War in Ukraine
Ukrainian Special Ops Hits Two Russian Buk Anti-Aircraft Missile Complexes Worth Millions
By Kyiv Post
2d ago
Russian Spy Couple Helped Kremlin’s Intelligence Organize Sabotage in Europe EU
Russian Spy Couple Helped Kremlin’s Intelligence Organize Sabotage in Europe
By Kyiv Post
Apr. 30
Satellite Images Reveal Fake Tu-22 and Su-24 Aircraft Painted by Russia at Mozdok Airbase Aviation
ANALYSIS: Satellite Images Reveal Fake Tu-22 and Su-24 Aircraft Painted by Russia at Mozdok Airbase
By Julia Struck
Apr. 30
Sponsored content

Comments (0)

https://www.kyivpost.com/assets/images/author.png
Best Oldest Newest
Write the first comment for this!
« Previous WORLD BRIEFING: April 23, 2024
Next » Ukraine Suspends Consular Services for Men Living Abroad