Evidence shows that three of the most destructive incidents seen in modern cyber-history are the work of one APT.
The massive NotPetya ransomware outbreak that crippled organizations around the world last year turns out to have links to the Industroyer backdoor, which targets industrial control systems (ICS) and took down the Ukrainian power grid in Kiev in 2016.
In fact, the same threat actor – dubbed TeleBots (a.k.a. Sandworm) by ESET researchers – appears to be behind NotPetya, the 2015 BlackEnergy attack that also caused blackouts in Ukraine, and the Industroyer campaign a year later.
By Tara Seals
To read the full article click here.