Blackouts in Ukraine last year were not just caused by missile strikes on the nation but also by a seemingly coordinated cyberattack on one of its power plants. That’s according to Mandiant’s threat intel team, which said Russia’s Sandworm crew was behind the two-pronged power-outage and data-wiping attack.
In research due to be published today, the Google-owned security shop details a previously unreported cyberattack on a Ukrainian power plant. That facility was compromised around June last year, and a two-day attack followed four months later, which just happened to coincide with massive missile strikes on Ukraine’s electrical grid. All in all, this knocked out power to about a third of the country.