Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation GreyEnergy

The campaign mainly targets industrial control system workstations running SCADA software at energy companies in Ukraine and Poland. The operation attempts to gain access by targeting an organizations Internet facing website or by sending malicious attachments in spear phishing emails. The malware used in the attacks is similar to the BlackEnergy malware which was used against the Ukrainian energy industry back in 2015.
Name Modified Date Sources
Operation GreyEnergy 2018-10-19