"Russian Sandworm Group Hit 20 Ukrainian Energy and Water Sites"

According to Ukraine's Community Emergency Response Team (CERT-UA), Russia's APT44, also known as "Sandworm," launched an attack on Ukrainian critical infrastructure in March. The group targeted 20 sites in an attempt to strengthen the impact of missile strikes on the country. The attack impacted energy, heating, and water facilities in 10 regions of the country. CERT-UA discovered two new backdoors called "Biasboat" and "Loadgrip," which are Linux versions of a previously known backdoor called "Queueseed." The use of Queueseed and another piece of malware named "Gossipflow," allowed CERT-UA to attribute the attack to APT44, a Russian actor that has executed both cyber espionage and destructive attacks. This article continues to discuss the Russian Sandworm group's attack on Ukrainian critical infrastructure in March. 

Infosecurity Magazine reports "Russian Sandworm Group Hit 20 Ukrainian Energy and Water Sites"

Submitted by grigby1