Solntsepyok, a malware that is short for malicious software, has been identified as a significant threat to computer systems and data. This harmful program is designed to exploit and damage your computer or device, infiltrating your system through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside, it can steal personal information, disrupt operations, or even hold your data hostage for ransom.
The SBU (Security Service of Ukraine) attributed a recent major cyberattack to Solntsepyok, a group believed to be affiliated with Sandworm, another notorious hacking group. The attack notably targeted Ukraine's largest mobile operator, Kyivstar, causing what was described as "the biggest cyberattack on telco infrastructure in the world". This resulted in widespread internet and network outages and interfered with air raid alerts. Shortly after the incident, Solntsepyok claimed responsibility for the breach, along with another hacker group called Killmilk.
Assessments have linked Solntsepyok to the Main Directorate of the General Staff of the Armed Forces of the Russian Federation (GRU), which also operates Sandworm. Solntsepyok is suspected to be a front for Sandworm, a well-known Russian hacking group associated with Russia’s GRU military intelligence agency. This agency has been persistently targeting Ukraine, including its energy sector, since the beginning of the Russian invasion with multiple data-wiping malware.
Description last updated: 2024-05-04T19:36:00.072Z