* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Saturday, June 28, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Susquehanna Raises Penn Entertainment Inc. (PENN) Price Target. – Yahoo Finance

    Susquehanna Raises Price Target for Penn Entertainment Inc. (PENN)

    George Lopez is coming to Spokane – KXLY.com

    George Lopez is coming to Spokane – KXLY.com

    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Ostin Technology (OST): Volatility’s Warning or Contrarian Opportunity? – AInvest

    Ostin Technology (OST): Navigating Market Volatility – Red Flag or Hidden Opportunity?

    St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

    St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

    Wayve Expands Engineering Leadership to Power Next-Gen Autonomous Driving Technology – Silicon Canals

    Wayve Boosts Engineering Leadership to Accelerate Next-Gen Autonomous Driving Innovation

    Frontdoor Announces Tech Expert Dr. Bala Ganesh as Chief Technology Officer – Business Wire

    Frontdoor Appoints Tech Visionary Dr. Bala Ganesh as New Chief Technology Officer

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Susquehanna Raises Penn Entertainment Inc. (PENN) Price Target. – Yahoo Finance

    Susquehanna Raises Price Target for Penn Entertainment Inc. (PENN)

    George Lopez is coming to Spokane – KXLY.com

    George Lopez is coming to Spokane – KXLY.com

    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Ostin Technology (OST): Volatility’s Warning or Contrarian Opportunity? – AInvest

    Ostin Technology (OST): Navigating Market Volatility – Red Flag or Hidden Opportunity?

    St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

    St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

    Wayve Expands Engineering Leadership to Power Next-Gen Autonomous Driving Technology – Silicon Canals

    Wayve Boosts Engineering Leadership to Accelerate Next-Gen Autonomous Driving Innovation

    Frontdoor Announces Tech Expert Dr. Bala Ganesh as Chief Technology Officer – Business Wire

    Frontdoor Appoints Tech Visionary Dr. Bala Ganesh as New Chief Technology Officer

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Mandiant formally pins Sandworm cyber attacks on APT44 group

April 17, 2024
in Technology
Mandiant formally pins Sandworm cyber attacks on APT44 group
Share on FacebookShare on Twitter

Mandiant has formally attributed a long-running campaign of cyber attacks by a Russian state actor known as Sandworm to a newly designated advanced persistent threat group to be called APT44


Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 17 Apr 2024 15:45

Google Cloud’s threat intel and research unit, Mandiant, has today formally attributed the cyber espionage and warfare campaigns carried out by a Russian actor widely known as Sandworm, pinning its attacks on a new, standalone advanced persistent threat (APT) group that it will henceforth be tracking as APT44.

With its intrusions dating back to Russia’s illegal annexation of Crimea in 2014, APT44 has been active for over a decade, and was involved in many high-profile Russian state cyber attacks, including hack-and-leak attacks on the 2016 US elections, the NotPetya incident, and attacks on the 2018 Olympic Winter Games in South Korea.

Since late 2021, its work has largely centred Ukraine, where it helped lay the groundwork for Moscow’s February 2022 attack on Kyiv with a campaign of cyber attacks deploying destructive wiper malware. Since then, the unit has conducted multiple attacks against targets in Ukraine.

APT44 is run by Unit 74455 at the Main Centre for Special Technologies (GTsST) at the Main Directorate of the General Staff of the Armed Forces of the Russian Federation (GU), better known as the Main Intelligence Directorate (GRU), founded by Joseph Stalin during the Soviet era, although not to be confused with the KGB.

“APT44 is the most brazen threat actor there is, in the midst of one of the most intense campaigns of cyber activity we’ve ever seen, in full-blown support of Russia’s war of territorial aggression,” said Dan Black, manager for cyber espionage analysis at Mandiant, and one of the lead authors of Mandiant’s new report on APT44. “There is no other threat actor today that is more worthy of our collective attention, and the threat APT44 poses is evolving rapidly.

“Over the course of the war, we have seen APT44’s posture shift away from disruption as its primary focus toward espionage to provide battlefield advantage to Russia’s conventional forces,” he said. “This is not to say that sabotage is off the table, but that APT44 seems much more calculated about the targets it pursues and the capabilities it opts to use. This is a highly adaptive and innovative adversary that is clearly absorbing lessons on how cyber operations can best support a long war and is adjusting its methods accordingly.”

Mandiant said APT44’s operations in support of Moscow’s aims have proven “tactically and operationally adaptable”, and that the operation was remarkably well integrated with the activities of Russia’s military. No other Russian government APT has played a more central role in shaping the conventional war in Ukraine, it added.

Why now?

Cyber security experts tend to be unanimous that attribution is a complex beast that requires intense research and evaluation of the evidence. This holds true even when a specific group’s activities are well known in the security community, and extensively documented in blog posts, research papers and in the media.

If there is even a slight degree of doubt over the evidence available, it can be extremely unhelpful, even unwise, to firmly attribute any cyber campaign to a known individual or group, even if well intentioned. To do so can cause problems for defenders who may mistakenly go chasing the wrong thing, and invites other, unintended consequences. It may even upset threat actors, who are notoriously self-obsessed and thin-skinned, and cause them to lash out in unforeseen ways.

As such, it has not really been possible to make confident statements on Sandworm’s precise nature up to now for a number of reasons – among them talk of operational overlap between APT44 and other groups such as APT28 (aka Fancy Bear) – which does indeed “sit across the corridor” under the auspices of the GTsST’s Unit 26165 (the two operations have likely worked together on a number of high-profile campaigns, according to Mandiant).

But by giving it a formal and confident designation, Mandiant said it will be easier for defenders globally to identify and track its activity, sharing intelligence more appropriately in the hope of thwarting the group’s goals.

Why should they need to do so? Because, said Mandiant, the threat posed by APT44 is far from limited to Ukraine. APT44 operations have been observed around the world, and given the group has a history of interfering in democratic processes, its threat potential is highly elevated in 2024 given the number of elections taking place that are likely to be targeted for Russian interference.

Indeed, Mandiant describes APT44 as a persistent and high-severity threat both to governments and operators of critical national infrastructure in states where Russia perceives it has a national interest, the UK included. APT44, with its advanced capabilities, high risk tolerance and mandate to support the Kremlin’s foreign policy goals, places such organisations at risk of falling into its clutches with little to no notice.

Added to this, Mandiant said APT44 represents a significant proliferation risk for new cyber attack tactics, techniques and procedures, lowering the barrier of entry for both state-backed and financially motivated threat actors to develop their own campaigns.

Looking ahead, the researchers said APT44 would “almost certainly” continue to represent one of the widest and highest cyber threats globally for the foreseeable future. Its history of involvement with some of the most widely known cyber attacks of the past decade suggests “no limit to the nationalist impulses” feeding its operations.

And just because it has been tied up in Ukraine does not mean it will not pivot to the UK and US if its paymasters feel doing so is warranted. The upcoming showdowns between Rishi Sunak and Keir Starmer and Joe Biden and Donald Trump may well draw its attention.

“The threat from APT44 does not end at Ukraine’s borders,” said Black. “Despite the ongoing war, we continue to see APT44 operations globally. We’ve seen the group experiment with using ransomware against transportation and logistics networks in Europe.

“And with a number of pivotal elections on the horizon, some of which will shape the trajectory of future Western military aid to Ukraine, APT44’s history of attempting to interfere in democratic processes means vigilance around this group is of utmost importance,” he said.

“What history tells us about APT44 is that its bias for action in service of the Kremlin’s whims means organisations around the world are at risk of falling into the group’s sights on short notice. This is a globally salient threat for which we all must be prepared.”

Read more on Hackers and cybercrime prevention


Mandiant upgrades Sandworm to APT44 due to increasing threat

ArielleWaldman

By: Arielle Waldman


Fancy Bear sniffs out Ubiquiti router users

AlexScroxton

By: Alex Scroxton


Revealed: How Russia’s Sandworm ramped up attacks on Ukraine’s critical infrastructure

AlexScroxton

By: Alex Scroxton


New North Korean APT launders crypto to fund spying programmes

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366581293/Mandiant-formally-pins-Sandworm-cyber-attacks-on-APT44-group

Tags: formallyMandianttechnology
Previous Post

CIO interview: Attiq Qureshi, chief digital information officer, Manchester United

Next Post

Lunar South Pole’s Quake Risks to Be Studied by Artemis Astronauts With Advanced Detector

Ostin Technology (OST): Volatility’s Warning or Contrarian Opportunity? – AInvest

Ostin Technology (OST): Navigating Market Volatility – Red Flag or Hidden Opportunity?

June 27, 2025
Vote for the Blue Water Area’s top high school sports moment from the 2025 spring season – Times Herald

Cast Your Vote for the Blue Water Area’s Most Unforgettable High School Sports Moment of Spring 2025!

June 27, 2025
Opinion: American Science Is in a Nosedive – and We’re All on Board – The Austin Chronicle

Opinion: American Science Is in a Nosedive – and We’re All on Board

June 27, 2025

Food contact articles as source of micro- and nanoplastics: a systematic evidence map | npj Science of Food – Nature

June 27, 2025
Michelle Dee is featured in Pride Month issue of digital lifestyle magazine – GMA Network

Michelle Dee is featured in Pride Month issue of digital lifestyle magazine – GMA Network

June 27, 2025
These are the best airlines of 2025 – and no US carrier made the list. Here’s why. – USA Today

These are the best airlines of 2025 – and no US carrier made the list. Here’s why. – USA Today

June 27, 2025
Britain’s industrial strategy is unlikely to boost its economy – The Economist

Britain’s industrial strategy is unlikely to boost its economy – The Economist

June 27, 2025
Ashley Jensen joins Superior Clinic to practice family medicine – Essentia Health

Ashley Jensen Joins Superior Clinic to Deliver Expert Family Medicine Care

June 27, 2025
Heads of state and political leaders gather at ‘Summer Davos’. Here’s what they are saying – The World Economic Forum

Heads of state and political leaders gather at ‘Summer Davos’. Here’s what they are saying – The World Economic Forum

June 27, 2025
St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

St. Francis Medical Center brings advanced robotic surgery technology to Northeast Louisiana – KNOE

June 27, 2025

Categories

Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (699)
  • Economy (720)
  • Entertainment (21,613)
  • General (15,595)
  • Health (9,759)
  • Lifestyle (725)
  • News (22,149)
  • People (722)
  • Politics (727)
  • Science (15,937)
  • Sports (21,217)
  • Technology (15,705)
  • World (700)

Recent News

Ostin Technology (OST): Volatility’s Warning or Contrarian Opportunity? – AInvest

Ostin Technology (OST): Navigating Market Volatility – Red Flag or Hidden Opportunity?

June 27, 2025
Vote for the Blue Water Area’s top high school sports moment from the 2025 spring season – Times Herald

Cast Your Vote for the Blue Water Area’s Most Unforgettable High School Sports Moment of Spring 2025!

June 27, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version