11 October 18, 13:42
Quote:Security researchers found the missing link that helps them prove that the NotPetya disk-wiping malware and the Industroyer backdoor for electric power systems are the work of the TeleBots group. Both pieces of malware were used in attacks against targets in Ukraine and researchers have found clues in the past pointing to the same actor being behind them, but could confirm this only with "low confidence."
In a report today shared in advance with BleepingComputer, ESET reveals that the link between the two pieces of malware is a new backdoor deployed by TeleBots as the successor for the main Industroyer variant.
![[Image: ESET_link_NotPetya_Industroyer-BlackEnergy.png]](https://www.bleepstatic.com/images/news/u/1100723/ESET_link_NotPetya_Industroyer-BlackEnergy.png)
Source: https://www.bleepingcomputer.com/news/se...ots-group/
![[-]](https://www.geeks.fyi/images/collapse.png)
