BlackEnergy cyberespionage group adds disk wiper and SSH backdoor to its arsenal

Discussion in 'Off-Topic' started by Sefie, Jan 6, 2016.

  1. Sefie

    Sefie

    Joined:
    Jan 15, 2014
    Messages:
    947
    Likes Received:
    183
    A cyberespionage group focused on companies and organizations in the energy sector has recently updated its arsenal with a destructive data-wiping component and a backdoored SSH server.

    The group is known in the security community as Sandworm or BlackEnergy, after its primary malware tool, and has been active for several years. It has primarily targeted companies that operate industrial control systems, especially in the energy sector, but has also gone after high-level government organizations, municipal offices, federal emergency services, national standards bodies, banks, academic research institutions and property companies.

    Over the past few months, the group has targeted organizations from the media and energy industries in Ukraine, according to security researchers from antivirus vendor ESET. These new operations have brought to light some changes in the group's techniques.

    http://www.pcworld.com/article/3018...sk-wiper-and-ssh-backdoor-to-its-arsenal.html
     
    Sefie, Jan 6, 2016
    #1
Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads

  1. SSH Support

  2. Fedora and no SSH?

  3. SSH Server

  4. unable to connect via ssh

  5. 6-Cell Battery Adds Battery Life, Weight, Girth

  6. How to trim/wiper/re-conditioning SSD on AAO110?

  7. Cyberespionage group abuses Windows hotpatching mechanism for malware stealth

  8. New Tor-powered backdoor malware targets Macs

Loading...