US Report Says Hackers Are Responsible For Ukrainian Power Outage
The power outage Ukraine experienced last year that affected more than 225,000 people is one of the first successful attacks that have taken down part of a national power grid.
Since then, several US agencies, including the FBI, NCCIC, DOE, and US-CERT, traveled to Ukraine and worked with the government there to learn from this attack and gain insight.
A report by the ICS-CERT (Industrial Control Systems Cyber Emergency Response Team) says that there have “been reports of malware found in Ukrainian companies in a variety of critical infrastructure sectors. Public reports indicate that the BlackEnergy (BE) malware was discovered on the companies’ computer networks, however it is important to note that the role of BE in this event remains unknown pending further technical analysis.”
According to F-Secure, “BlackEnergy is a toolkit that has been used for years by various criminal outfits. In the summer of 2014, we noted that certain samples of BlackEnergy malware began targeting Ukranian [sic] government organizations for information harvesting. These samples were identified as being the work of one group, referred to in this document as “Quedagh”, which has a history of targeting political organizations.”