* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Friday, August 8, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Themed Entertainment Design – Purdue Polytechnic

    Innovative Themed Entertainment Design: Creating Immersive Experiences

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    ‘Billie Jean’ – Hyde Park Herald

    The Enduring Magic Behind ‘Billie Jean’ Revealed

    Hank Hill returns to a changed world in new ‘King of the Hill’ episodes – New Haven Register

    Hank Hill Navigates a Bold New World in Thrilling New ‘King of the Hill’ Episodes

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Go-to entertainment: why gaming was made for the toilet – The Guardian

    Why Gaming Is the Ultimate Way to Pass Time in the Bathroom

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    MBU showcases student work at Occupational Therapy Technology Fair – WHSV

    Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

    BlackSky Technology Inc. (BKSY) Reports Q2 Loss, Lags Revenue Estimates – Yahoo Finance

    BlackSky Technology Inc. Reports Q2 Loss, Misses Revenue Targets

    Improved Technology Access: A Key to Closing the Healthcare Gap for African Americans – BIOENGINEER.ORG

    LMI Expands Technology Org, Appoints New Leaders – GovCon Wire

    LMI Expands Technology Team with Dynamic New Leadership Appointments

    Midland Innovation and Technology Charter School closing down – CBS News

    Midland Innovation and Technology Charter School Closes Permanently

    Future Trends In HR Technology – Dataconomy

    Future Trends In HR Technology – Dataconomy

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Themed Entertainment Design – Purdue Polytechnic

    Innovative Themed Entertainment Design: Creating Immersive Experiences

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    ‘Billie Jean’ – Hyde Park Herald

    The Enduring Magic Behind ‘Billie Jean’ Revealed

    Hank Hill returns to a changed world in new ‘King of the Hill’ episodes – New Haven Register

    Hank Hill Navigates a Bold New World in Thrilling New ‘King of the Hill’ Episodes

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Go-to entertainment: why gaming was made for the toilet – The Guardian

    Why Gaming Is the Ultimate Way to Pass Time in the Bathroom

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    MBU showcases student work at Occupational Therapy Technology Fair – WHSV

    Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

    BlackSky Technology Inc. (BKSY) Reports Q2 Loss, Lags Revenue Estimates – Yahoo Finance

    BlackSky Technology Inc. Reports Q2 Loss, Misses Revenue Targets

    Improved Technology Access: A Key to Closing the Healthcare Gap for African Americans – BIOENGINEER.ORG

    LMI Expands Technology Org, Appoints New Leaders – GovCon Wire

    LMI Expands Technology Team with Dynamic New Leadership Appointments

    Midland Innovation and Technology Charter School closing down – CBS News

    Midland Innovation and Technology Charter School Closes Permanently

    Future Trends In HR Technology – Dataconomy

    Future Trends In HR Technology – Dataconomy

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Mandiant formally pins Sandworm cyber attacks on APT44 group

April 17, 2024
in Technology
Mandiant formally pins Sandworm cyber attacks on APT44 group
Share on FacebookShare on Twitter

Mandiant has formally attributed a long-running campaign of cyber attacks by a Russian state actor known as Sandworm to a newly designated advanced persistent threat group to be called APT44


Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 17 Apr 2024 15:45

Google Cloud’s threat intel and research unit, Mandiant, has today formally attributed the cyber espionage and warfare campaigns carried out by a Russian actor widely known as Sandworm, pinning its attacks on a new, standalone advanced persistent threat (APT) group that it will henceforth be tracking as APT44.

With its intrusions dating back to Russia’s illegal annexation of Crimea in 2014, APT44 has been active for over a decade, and was involved in many high-profile Russian state cyber attacks, including hack-and-leak attacks on the 2016 US elections, the NotPetya incident, and attacks on the 2018 Olympic Winter Games in South Korea.

Since late 2021, its work has largely centred Ukraine, where it helped lay the groundwork for Moscow’s February 2022 attack on Kyiv with a campaign of cyber attacks deploying destructive wiper malware. Since then, the unit has conducted multiple attacks against targets in Ukraine.

APT44 is run by Unit 74455 at the Main Centre for Special Technologies (GTsST) at the Main Directorate of the General Staff of the Armed Forces of the Russian Federation (GU), better known as the Main Intelligence Directorate (GRU), founded by Joseph Stalin during the Soviet era, although not to be confused with the KGB.

“APT44 is the most brazen threat actor there is, in the midst of one of the most intense campaigns of cyber activity we’ve ever seen, in full-blown support of Russia’s war of territorial aggression,” said Dan Black, manager for cyber espionage analysis at Mandiant, and one of the lead authors of Mandiant’s new report on APT44. “There is no other threat actor today that is more worthy of our collective attention, and the threat APT44 poses is evolving rapidly.

“Over the course of the war, we have seen APT44’s posture shift away from disruption as its primary focus toward espionage to provide battlefield advantage to Russia’s conventional forces,” he said. “This is not to say that sabotage is off the table, but that APT44 seems much more calculated about the targets it pursues and the capabilities it opts to use. This is a highly adaptive and innovative adversary that is clearly absorbing lessons on how cyber operations can best support a long war and is adjusting its methods accordingly.”

Mandiant said APT44’s operations in support of Moscow’s aims have proven “tactically and operationally adaptable”, and that the operation was remarkably well integrated with the activities of Russia’s military. No other Russian government APT has played a more central role in shaping the conventional war in Ukraine, it added.

Why now?

Cyber security experts tend to be unanimous that attribution is a complex beast that requires intense research and evaluation of the evidence. This holds true even when a specific group’s activities are well known in the security community, and extensively documented in blog posts, research papers and in the media.

If there is even a slight degree of doubt over the evidence available, it can be extremely unhelpful, even unwise, to firmly attribute any cyber campaign to a known individual or group, even if well intentioned. To do so can cause problems for defenders who may mistakenly go chasing the wrong thing, and invites other, unintended consequences. It may even upset threat actors, who are notoriously self-obsessed and thin-skinned, and cause them to lash out in unforeseen ways.

As such, it has not really been possible to make confident statements on Sandworm’s precise nature up to now for a number of reasons – among them talk of operational overlap between APT44 and other groups such as APT28 (aka Fancy Bear) – which does indeed “sit across the corridor” under the auspices of the GTsST’s Unit 26165 (the two operations have likely worked together on a number of high-profile campaigns, according to Mandiant).

But by giving it a formal and confident designation, Mandiant said it will be easier for defenders globally to identify and track its activity, sharing intelligence more appropriately in the hope of thwarting the group’s goals.

Why should they need to do so? Because, said Mandiant, the threat posed by APT44 is far from limited to Ukraine. APT44 operations have been observed around the world, and given the group has a history of interfering in democratic processes, its threat potential is highly elevated in 2024 given the number of elections taking place that are likely to be targeted for Russian interference.

Indeed, Mandiant describes APT44 as a persistent and high-severity threat both to governments and operators of critical national infrastructure in states where Russia perceives it has a national interest, the UK included. APT44, with its advanced capabilities, high risk tolerance and mandate to support the Kremlin’s foreign policy goals, places such organisations at risk of falling into its clutches with little to no notice.

Added to this, Mandiant said APT44 represents a significant proliferation risk for new cyber attack tactics, techniques and procedures, lowering the barrier of entry for both state-backed and financially motivated threat actors to develop their own campaigns.

Looking ahead, the researchers said APT44 would “almost certainly” continue to represent one of the widest and highest cyber threats globally for the foreseeable future. Its history of involvement with some of the most widely known cyber attacks of the past decade suggests “no limit to the nationalist impulses” feeding its operations.

And just because it has been tied up in Ukraine does not mean it will not pivot to the UK and US if its paymasters feel doing so is warranted. The upcoming showdowns between Rishi Sunak and Keir Starmer and Joe Biden and Donald Trump may well draw its attention.

“The threat from APT44 does not end at Ukraine’s borders,” said Black. “Despite the ongoing war, we continue to see APT44 operations globally. We’ve seen the group experiment with using ransomware against transportation and logistics networks in Europe.

“And with a number of pivotal elections on the horizon, some of which will shape the trajectory of future Western military aid to Ukraine, APT44’s history of attempting to interfere in democratic processes means vigilance around this group is of utmost importance,” he said.

“What history tells us about APT44 is that its bias for action in service of the Kremlin’s whims means organisations around the world are at risk of falling into the group’s sights on short notice. This is a globally salient threat for which we all must be prepared.”

Read more on Hackers and cybercrime prevention


Mandiant upgrades Sandworm to APT44 due to increasing threat

ArielleWaldman

By: Arielle Waldman


Fancy Bear sniffs out Ubiquiti router users

AlexScroxton

By: Alex Scroxton


Revealed: How Russia’s Sandworm ramped up attacks on Ukraine’s critical infrastructure

AlexScroxton

By: Alex Scroxton


New North Korean APT launders crypto to fund spying programmes

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366581293/Mandiant-formally-pins-Sandworm-cyber-attacks-on-APT44-group

Tags: formallyMandianttechnology
Previous Post

CIO interview: Attiq Qureshi, chief digital information officer, Manchester United

Next Post

Lunar South Pole’s Quake Risks to Be Studied by Artemis Astronauts With Advanced Detector

Icing‐related injuries in polar bears (Ursus maritimus) at high latitudes – Laidre – 2024 – Ecology – ESA Journals

Frozen Peril: The Devastating Impact of Icing Injuries on Polar Bears in the High Arctic

August 8, 2025
Carnegie Science Center launching new name in September – CBS News

Carnegie Science Center Unveils Exciting New Name This September

August 8, 2025
Petersburg youth explore Coho Creek for science education – Petersburg Pilot

Petersburg Youth Dive into Science with Hands-On Exploration of Coho Creek

August 8, 2025
Is there a path to healthier aging? What the latest research shows | Bodyworks – The Oklahoman

Is there a path to healthier aging? What the latest research shows | Bodyworks – The Oklahoman

August 8, 2025
MBU showcases student work at Occupational Therapy Technology Fair – WHSV

Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

August 8, 2025
Official | Evann Guessand completes €35m Aston Villa move – Yahoo Sports

Official | Evann Guessand completes €35m Aston Villa move – Yahoo Sports

August 8, 2025
Trailer: Netflix Animation Welcomes Viewers to the Whimsical World of Dr. Seuss! – Animation Magazine

Trailer Unveils the Whimsical World of Dr. Seuss in Netflix Animation!

August 8, 2025
Spending on AI data centers is so massive that it’s taken a bigger chunk of GDP growth than shopping—and it could crash the American economy – Fortune

Spending on AI data centers is so massive that it’s taken a bigger chunk of GDP growth than shopping—and it could crash the American economy – Fortune

August 8, 2025
SPC Health Programs Showcase: Featuring Nursing, Radiography, and Surgical Services Degrees – St. Petersburg College

Explore Exciting Career Paths in Nursing, Radiography, and Surgical Services at SPC Health Programs Showcase

August 8, 2025
Top Trump officials discussed Epstein at White House meeting Wednesday night – CNN

Top Trump officials discussed Epstein at White House meeting Wednesday night – CNN

August 8, 2025

Categories

Archives

August 2025
MTWTFSS
 123
45678910
11121314151617
18192021222324
25262728293031
« Jul    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (760)
  • Economy (783)
  • Entertainment (21,659)
  • General (16,347)
  • Health (9,822)
  • Lifestyle (793)
  • News (22,149)
  • People (784)
  • Politics (792)
  • Science (15,996)
  • Sports (21,280)
  • Technology (15,763)
  • World (765)

Recent News

Icing‐related injuries in polar bears (Ursus maritimus) at high latitudes – Laidre – 2024 – Ecology – ESA Journals

Frozen Peril: The Devastating Impact of Icing Injuries on Polar Bears in the High Arctic

August 8, 2025
Carnegie Science Center launching new name in September – CBS News

Carnegie Science Center Unveils Exciting New Name This September

August 8, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version