| ID | Votes | Profile Description |
|---|---|---|
| Sandworm | 5 | Sandworm, a Russia-linked threat actor group, has been implicated in a series of significant cyber-attacks targeting Ukraine's infrastructure. The group successfully compromised 11 Ukrainian telecommunication providers, demonstrating their extensive capabilities and the broad reach of their operatio |
| Industroyer | 4 | Industroyer, also known as CrashOverride, is a potent malware specifically designed to target Industrial Control Systems (ICS) used in electrical substations. It first gained notoriety for its role in the 2016 cyberattack on Ukraine's power grid, which resulted in a six-hour blackout in Kyiv. The ma |
| GreyEnergy | 4 | GreyEnergy is a type of malware, or malicious software, designed to exploit and damage computer systems. It is believed to have been used in attacks on Ukraine's power grid in 2018 by the Russia-linked Advanced Persistent Threat (APT) group, Sandworm. Security firm WithSecure has identified overlaps |
| Telebots | 3 | TeleBots, a notorious threat actor group also known as Sandworm, BlackEnergy, Iron Viking, Voodoo Bear, and Seashell Blizzard, has been identified as operating under the control of Unit 74455 of the Russian GRU's Main Center for Special Technologies (GTsST). Active since 2000, the group is recognize |
| Sandworm Team | 2 | The Sandworm Team, a threat actor associated with Russia's military intelligence-linked group, has demonstrated significant capabilities in developing custom malware to target Operational Technology (OT) and Industrial Control Systems (ICSs). Since at least 2015, the team has used the "BlackEnergy" |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| NotPetya | is related to | 4 | NotPetya is a notorious malware that emerged in 2017, widely attributed to the Russian hacking group APT28, also known as Sandworm. This malicious software was primarily an act of cyberwar against Ukraine, delivered through updates to MeDoc accounting software, a technique known as a supply chain at |
| Kapeka | is related to | 4 | Kapeka is a previously unknown malware that operates as a backdoor into systems, linked to the Russian Sandworm Advanced Persistent Threat (APT) group. The malicious software can infiltrate a system through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, i |
| Stuxnet | Unspecified | 2 | Stuxnet, discovered in 2010, is one of the most notorious malware attacks in history, primarily targeting Windows systems, programming logic controllers (PLCs), and supervisory controls and data acquisition (SCADA) systems. The military-grade cyberweapon was co-developed by the United States and Isr |
| Gozi | Unspecified | 2 | Gozi is a notorious malware that has been linked to numerous cyber attacks. It's typically delivered through sophisticated malvertising techniques, often used in conjunction with other initial access malware such as Pikabot botnet agent and IcedID information stealer. When an individual accesses a c |
| Zeus | Unspecified | 2 | Zeus is a notorious form of malware, or malicious software, designed to exploit and damage computer systems. It infiltrates devices often without the user's knowledge via suspicious downloads, emails, or websites. Once embedded within a system, Zeus can steal personal information, disrupt operations |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Quedagh | Unspecified | 2 | None |
| Gamaredon | Unspecified | 2 | Gamaredon, a Russian Advanced Persistent Threat (APT) group, has been identified as a significant threat actor in the cybersecurity landscape. Notably, it has employed the USB worm LitterDrifter in a series of cyberattacks against Ukraine, demonstrating its capacity for sophisticated and disruptive |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| CVE-2014-4114 | Unspecified | 2 | CVE-2014-4114 is a significant vulnerability that lies within the design or implementation of software. This flaw specifically targets the Microsoft Windows OLE Package Manager, enabling remote code execution. The exploit was primarily used in .pps files, which are PowerPoint presentation files, mak |
| Preview | Source Link | CreatedAt | Title |
|---|---|---|---|
| DARKReading | 4 months ago | To Damage OT Systems, Hackers Tap USBs, Old Bugs & Malware | |
| Securityaffairs | 5 months ago | Previously unknown Kapeka backdoor linked to Sandworm APT | |
| DARKReading | 5 months ago | Dangerous New ICS Malware Targets Orgs in Russia and Ukraine | |
| BankInfoSecurity | 5 months ago | Likely Sandworm Hackers Using Novel Backdoor 'Kapeka' | |
| CERT-EU | 6 months ago | Operational Technology Threats - ReliaQuest | |
| DARKReading | 6 months ago | Improved, Stuxnet-Like PLC Malware Aims to Disrupt Critical Infrastructure | |
| Securityaffairs | 8 months ago | Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months | |
| CERT-EU | 10 months ago | Advanced threat predictions for 2024 – GIXtools | |
| Securelist | 10 months ago | Kaspersky Security Bulletin: APT predictions 2024 | |
| Securityaffairs | 10 months ago | Russian Sandworm disrupts power in Ukraine with a new OT attack | |
| CERT-EU | a year ago | The Urgency for Robust Utility Cybersecurity | |
| Securityaffairs | a year ago | Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers | |
| CERT-EU | a year ago | Is Future Escalation in Cyber Conflict a Foregone Conclusion? | |
| Securityaffairs | a year ago | Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware | |
| CERT-EU | a year ago | IT threat evolution in Q2 2023 – GIXtools | |
| CERT-EU | a year ago | IT threat evolution Q2 2023 | |
| CERT-EU | a year ago | Gozi strikes again, targeting banks, cryptocurrency and more | |
| CERT-EU | a year ago | US and Poland shut down Lolek Hosted bulletproof hosting platform | |
| CERT-EU | a year ago | Recently Patched GE Cimplicity Vulnerabilities Reminiscent of Russian ICS Attacks | |
| CERT-EU | a year ago | Cyberattacks on OT, ICS Lay Groundwork for Kinetic Warfare |