Russian APT Sandworm disrupted power in Ukraine using novel OT techniques. The attack targeted a critical infrastructure organization and leveraged a technique for impacting industrial control systems (ICS) and operational technology (OT). The attack included a power outage and a wiper attack to limit investigation. The attacker potentially had access to the SCADA system for up to three months. The attack was potentially timed with missile strikes on critical infrastructure. The attack showcased the growing maturity of Russia's offensive OT arsenal. Sandworm is a hacking group linked to Russia's military intelligence service and has a long-standing focus on Ukraine. The incident highlights the ongoing threat Ukraine faces. Hashtags: #RussianAPT #Sandworm #Ukraine #OTtechniques

https://www.infosecurity-magazine.com/news/russia-sandworm-disrupted-power/