The hacking group which took down Ukrainian power grids is systematically targeting critical infrastructure in Ukraine and beyond in what security researchers believe could be cyber espionage and reconnaissance ahead of future attacks.
Dubbed GreyEnergy by researchers at ESET, the group is believed to have been active over the last three years and to be linked to BlackEnergy, the attack group whose actions left 230,000 people in Ukraine without electricity in December 2015.
According to analysis by ESET, GreyEnergy is also related to Telebots — the group behind NotPetya, a destructive attack that a number of Western government security agencies have attributed to Russia’s military intelligence service, the GRU.
Read more…
Source: ZDNet