Geeks for your information
New Backdoor Ties NotPetya and Industroyer to TeleBots Group - Printable Version

+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: News (https://www.geeks.fyi/forumdisplay.php?fid=105)
+--- Forum: Privacy & Security News (https://www.geeks.fyi/forumdisplay.php?fid=107)
+--- Thread: New Backdoor Ties NotPetya and Industroyer to TeleBots Group (/showthread.php?tid=4100)



New Backdoor Ties NotPetya and Industroyer to TeleBots Group - silversurfer - 11 October 18

Quote:Security researchers found the missing link that helps them prove that the NotPetya disk-wiping malware and the Industroyer backdoor for electric power systems are the work of the TeleBots group. Both pieces of malware were used in attacks against targets in Ukraine and researchers have found clues in the past pointing to the same actor being behind them, but could confirm this only with "low confidence."

In a report today shared in advance with BleepingComputer, ESET reveals that the link between the two pieces of malware is a new backdoor deployed by TeleBots as the successor for the main Industroyer variant.

[Image: ESET_link_NotPetya_Industroyer-BlackEnergy.png]

Source: https://www.bleepingcomputer.com/news/security/new-backdoor-ties-notpetya-and-industroyer-to-telebots-group/