Cyber-criminals behind the BlackEnergy trojan made a comeback in 2015, launching attacks against media and energy companies in the Ukraine, according to infosec researchers.
The malware is suspected of being Russian in origin with it being used against politically sensitive targets and industrial control systems.
According to Eset, BlackEnergy went dormant in December 2014 but resurfaced late last year. The malware now uses a new component called KillDisk in attacks against Ukrainian news media companies and against the electrical power industry.
The KillDisk component enables the malware to rewrite files on the infected system with random data and render the OS unbootable. For the full article click here
from critical infrastructure alliance http://ift.tt/1Z2I5UW
via IFTTT
No comments:
Post a Comment