This dangerous Russian-linked malware could shut down power grids

Sead Fadilpašić

May 26, 2023 at 6:25 AM·2 min read

Cybersecurity researchers have uncovered a new dangerous malware designed to disrupt systems such as energy grids or other critical infrastructure.

Experts from Mandiant dubbed the malware CosmicEnergy, and believe it’s similar to previously-discovered Sandworm. Sandworm is a notorious Russian state-sponsored malware that was designed to target Ukrainian power grids back in 2016.

The key difference between CosmicEnergy and Sandworm is that the former wasn’t discovered after a security incident, but rather through threat hunting. Someone from Russia uploaded the malware to VirusTotal a year and a half ago, which is where Mandiant’s researchers picked it up.

Developed for training

Apparently, the malware was developed by Rostelecom-Solar, the cybersecurity department of Rostelecom - Russia’s national telecom operator.

The initial conclusion is that the malware was designed for training purposes, likely to educate the IT department on how to behave in case an actual attack on the grid happens. The researchers said one such training was hosted in collaboration with the Russian Ministry of Energy back in 2021.

“A contractor may have developed it as a red-teaming tool for simulated power disruption exercises hosted by Rostelecom-Solar,” the researchers state “However, given the lack of conclusive evidence, we consider it also possible that a different actor — either with or without permission — reused code associated with the cyber range to develop this malware.”

> NSA warns Citrix devices are under attack from Chinese hackers, so update now

> Chinese hackers snooped on US telco traffic for years

> Here are the best firewalls right now

Still, given CosmicEnergy’s functionalities, the researchers can’t exclude the possibility that the malware could be used in an actual attack.

In any case, the malware wasn’t seen in the wild, the researchers told TechCrunch. They also told the publication that the malware “lacks discovery capabilities”, meaning threat actors would first need to recon the compromised network for things like IP addresses and credentials, before being able to mount an attack.

“The discovery of new OT [operational technology] malware presents an immediate threat to affected organizations since these discoveries are rare and because the malware principally takes advantage of insecure by-design features of OT environments that are unlikely to be remedied any time soon,” the researchers concluded.

Check out the best endpoint protection services around

Via: TechCrunch

Yahoo Sports
Based on the odds, here's what the top 10 picks of the NFL Draft will be
What would a mock draft look like using just betting odds?
2d ago
Yahoo Sports
Broncos, Jets, Lions and Texans have new uniforms. Let's rank them
Which new uniforms are winners this season?
16h ago
Yahoo Finance
Jamie Dimon is worried the US economy is headed back to the 1970s
JPMorgan's CEO is concerned the US economy could be in for a repeat of the stagflation that hampered the country during the 1970s.
1d ago
Yahoo TV
Everyone's still talking about the 'SNL' Beavis and Butt-Head sketch. Cast members and experts explain why it's an instant classic.
Ryan Gosling, who starred in the skit, couldn't keep a straight face — and neither could some of the "Saturday Night Live" cast.
2d ago
Yahoo Sports
Dave McCarty, player on 2004 Red Sox championship team, dies 1 week after team's reunion
The Red Sox were already mourning the loss of Tim Wakefield from that 2004 team.
4d ago
Yahoo Sports
Ryan Garcia drops Devin Haney 3 times en route to stunning upset
The 25-year-old labeled "mentally fragile" by many delivered the upset for the ages.
4d ago
Yahoo Sports
Luka makes Clippers look old, Suns are in big trouble & a funeral for Lakers | Good Word with Goodwill
Vincent Goodwill and Tom Haberstroh break down last night’s NBA Playoffs action and preview several games for tonight and tomorrow.
11h ago
Yahoo Sports
WNBA Draft winners and losers: As you may have guessed, the Fever did pretty well. The Liberty? Perhaps not
Here are five franchises who stood out, for better or for worse.
9d ago
Yahoo Sports
Yankees' Nestor Cortés told by MLB his pump-fake pitch is illegal
Cortés' attempt didn't fool Andrés Giménez, who fouled off the pitch.
5d ago
Yahoo Sports
Arch Manning dominates in the Texas spring game, and Jaden Rashada enters the transfer portal
Dan Wetzel, Ross Dellenger & SI’s Pat Forde react to the huge performance this weekend by Texas QB Arch Manning, Michigan and Notre Dame's spring games, Jaden Rashada entering the transfer portal, and more
2d ago
Yahoo Life
Here’s when people think old age begins — and why experts think it’s starting later
People's definition of "old age" is older than it used to be, new research suggests.
3d ago
Yahoo Sports
Chiefs make Andy Reid NFL's highest-paid coach, sign president Mark Donovan, GM Brett Veach to extensions
Reid's deal reportedly runs through 2029 and makes him the highest-paid coach in the NFL.
2d ago
Yahoo Sports
2024 NFL mock draft: With one major trade-up, it's a QB party in the top 5
Our final 2024 mock draft projects four quarterbacks in the first five picks, but the Cardinals at No. 4 might represent the key pivot point of the entire board.
3d ago
Yahoo Finance
Donald Trump nabs additional $1.2 billion 'earnout' bonus from DJT stock
Trump is entitled to an additional 36 million shares if the company's share price trades above $17.50 "for twenty out of any thirty trading days" over the next three years.
1d ago
Yahoo Sports
Oakland University outfielders combine to make spectacular catch vs. Northern Kentucky
Oakland University outfielders John Lauinger and Reggie Bussey combined on what could be college baseball's best catch of the 2024 season against Northern Kentucky.
3d ago
Yahoo Sports
Dylan Edwards set to be latest Colorado running back to enter transfer portal
All four rushers who had more than 10 carries in 2023 for the Buffaloes are transferring.
2d ago
Autoblog
2025 Kia Tasman pickup previewed for global markets
Aimed at the Ford Ranger and other midsize pickups, the Kia Tasman pickup will make its debut by the end of 2024 with body-on-frame construction.
2d ago
Yahoo Sports
NBA Playoffs: Lillard sinks the Pacers, Celtics-Heat controversy, plus injury concerns for Kawhi & Embiid
Vincent Goodwill and Amin Elhassan react to (just about) every Round 1 game of the NBA Playoffs after the first games have been played over the weekend.
2d ago
Yahoo Sports
Bears request more than $2 billion in public money to fund $4.6 billion stadium project
The numbers for the Bears' proposed stadium project are astounding.
1d ago
Yahoo Sports
Arch Manning puts on a show in Texas' spring game, throwing for 3 touchdowns
Arch Manning gave Texas football fans an enticing look at the future, throwing for 355 yards and three touchdowns in the Longhorns' Orange-White spring game.
4d ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

This dangerous Russian-linked malware could shut down power grids

Developed for training

Recommended Stories

Based on the odds, here's what the top 10 picks of the NFL Draft will be

Broncos, Jets, Lions and Texans have new uniforms. Let's rank them

Jamie Dimon is worried the US economy is headed back to the 1970s

Everyone's still talking about the 'SNL' Beavis and Butt-Head sketch. Cast members and experts explain why it's an instant classic.

Dave McCarty, player on 2004 Red Sox championship team, dies 1 week after team's reunion

Ryan Garcia drops Devin Haney 3 times en route to stunning upset

Luka makes Clippers look old, Suns are in big trouble & a funeral for Lakers | Good Word with Goodwill

WNBA Draft winners and losers: As you may have guessed, the Fever did pretty well. The Liberty? Perhaps not

Yankees' Nestor Cortés told by MLB his pump-fake pitch is illegal

Arch Manning dominates in the Texas spring game, and Jaden Rashada enters the transfer portal

Here’s when people think old age begins — and why experts think it’s starting later

Chiefs make Andy Reid NFL's highest-paid coach, sign president Mark Donovan, GM Brett Veach to extensions

2024 NFL mock draft: With one major trade-up, it's a QB party in the top 5

Donald Trump nabs additional $1.2 billion 'earnout' bonus from DJT stock

Oakland University outfielders combine to make spectacular catch vs. Northern Kentucky

Dylan Edwards set to be latest Colorado running back to enter transfer portal

2025 Kia Tasman pickup previewed for global markets

NBA Playoffs: Lillard sinks the Pacers, Celtics-Heat controversy, plus injury concerns for Kawhi & Embiid

Bears request more than $2 billion in public money to fund $4.6 billion stadium project

Arch Manning puts on a show in Texas' spring game, throwing for 3 touchdowns