Mandiant Links Russia's Sandworm Hacking Group To Water Infrastructure Breaches
SearchSecurity, Wednesday, April 17th, 2024
Mandiant released a report that links Sandworm, a Russian state-backed threat actor, to a series of recent cyberattacks against water utilities.
The Google LLC unit also changed the codename it uses to track the hacking group. Mandiant will refer to Sandstorm as APT44 going forward, with APT being an abbreviation of advanced persistent threat. That's a term commonly used to describe state-backed hacking groups.
Mandiant believes that APT44 is an arm of Russia's GRU military intelligence agency. 'APT44 has aggressively pursued a multi-pronged effort to help the Russian military gain a wartime advantage and is responsible for nearly all of the disruptive and destructive operations against Ukraine over the past decade,' Mandiant researchers detailed in a blog post that accompanied today's report.