Russian Hacking Group Sandworm Linked to Attack on Danish Critical Infrastructure. Notorious Russian nation-state threat actor Sandworm has been linked to the largest ever cyber-attack targeting critical infrastructure in Denmark. The incident took place in May 2023 and saw the attackers targeted 22 companies involved in operating Danish critical infrastructure. Sandworm was behind the attacks that took down power in parts of Ukraine in 2015 and 2016. In the first wave of attacks, the threat actors exploited the critical vulnerability CVE-2023-28771 contained in Zyxel firewalls. A second wave of attacks took place using “never-before-seen cyber weapons.” Sophisticated Attacks Linked to Sandworm. Short-sighted decision making led to critical infrastructure providers not patching a known zero-day vulnerability in the Zyxel firewalls. #Cybersecurity #Sandworm #RussianHacking #CriticalInfrastructure #Denmark

https://www.infosecurity-magazine.com/news/russian-sandworm-attack-danish/