Report: Sandworm hackers unlikely involved in Denmark cyberattacks

12 January 2024

CyberScoop reports that Russian state-sponsored threat operation Sandworm was noted by Forescout to not have been behind two separate hacking campaigns against Denmark’s critical infrastructure last year, which were attributed to the hacking group by the country’s SektorCERT. Attacks against Danish energy firms in May that targeted a Zyxel firewall vulnerability involved the usage of an IP address associated with the Katana Mirai botnet following the disruption of the Cyclops Blink botnet used by the Russian hackers, while the second campaign, initially reported to have begun weeks later, was discovered to have commenced before the initial campaign, according to the Forescout report.

Source: SC Magazine

Date:

12 January 2024

Categorie(s):

NEWS

Tag(s):

Denmark, IT, Malware, News, Sandworm

Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters3 May 2024
New “Goldoon” Botnet Hijacking D-Link Routers to Use for Other Attacks3 May 2024
Ransom recovery costs reach $2.73 million3 May 2024
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks3 May 2024
Indonesia sneakily buys spyware, claims Amnesty International3 May 2024