The first attack took place no later than February 2022, while the final destructive stages were set for April 8, 2022
Microsoft has seized control of seven internet domains, which it says the Strontium hacking group used to launch cyberattacks against Ukrainian institutions, as well as government entities and think tanks in the US and Europe.
Allows attackers to distribute second-stage payloads to infected devices
Researchers at Analyst1have found a custom espionage malware that enables hackers to harvest keystrokes and confidential documents for espionage purposes
Joint UK/US report says GRU-linked attacks are mainly directed at organisations that use Microsoft 365
British official have also disclosed details of Russian attempts to target 2018 Winter Olympic and Paralympic Games in South Korea
The particular group is referred to as "Sandworm" in cyber security community
UK accuses Russia of being behind a string of cyber attacks on neighbouring states