This article was published on January 8, 2016

Russian hacker group believed to be behind world’s first cyberattack on power stations


Russian hacker group believed to be behind world’s first cyberattack on power stations

Security firm iSIGHT Partners said in a blog post that it believes that the world’s first power outage caused by hackers in Ukraine two weeks ago may be the work of Russian group Sandworm Team.

The company said the use of trojans from the BlackEnergy malware family as well as the KillDisk tool, found after investigating the attack on Ukrainian power authorities’ systems, are common in Sandworm Team’s attacks. Those findings, along with intelligence supplied by ‘sensitive sources’ point to the Russian cyberattack outfit.

Reuters reports that Ukraine’s SBU state security service also believes Russia is to blame for the outage. However, no links between Sandworm Team and the Russian government have been established so far.

The group is believed to have previously targeted Ukrainian officials, NATO members and even the US Department of Homeland Security on espionage missions.

The <3 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol' founder Boris, and some questionable AI art. It's free, every week, in your inbox. Sign up now!

Sandworm Team and the Ukrainian Power Authority Attacks [iSIGHT Partners Blog]

Get the TNW newsletter

Get the most important tech news in your inbox each week.