Sergiu Gatlan reports:
The United States and its allies have linked a group of Russian hackers (tracked as Cadet Blizzard and Ember Bear) behind global critical infrastructure attacks to Unit 29155 of Russia’s Main Directorate of the General Staff of the Armed Forces (also known as GRU).
In a joint advisory published today, the Russian GRU military intelligence hackers, known for deploying WhisperGate data-wiping malware in Ukraine in January 2022, are described as “junior active-duty GRU officers” part of GRU’s 161st Specialist Training Center and coordinated by experienced Unit 29155 leadership.
The group has been orchestrating sabotage and assassination attempts throughout Europe and cyberattacks against critical infrastructure sectors of NATO members and countries across North America, Europe, Latin America, and Central Asia since 2020, with a switch to disrupting efforts to provide aid to Ukraine since early 2022.
Read more at Bleeping Computer.
Related: Five Russian GRU Officers and One Civilian Charged for Conspiring to Hack Ukrainian Government