Tag: State-Sponsored

Russian military intelligence (GRU Unit 74455 - Sandworm) deployed a destructive wiper malware disguised as ransomware via compromised M.E.Doc accounting software updates, targeting Ukraine but spreading globally. The attack caused $10 billion in damages, making it the most destructive cyberattack in history. Unlike ransomware, files could not be recovered even with payment - NotPetya was designed purely for destruction.

State-sponsored ransomware worm attributed to North Korea's Lazarus Group exploited leaked NSA EternalBlue exploit to infect over 300,000 computers across 150 countries in 24 hours, crippling hospitals, corporations, and government agencies worldwide. Attack was halted by accidental kill switch discovery but caused an estimated $4 billion in global damages.

State-sponsored cyber weapon developed by the US and Israel exploited four zero-day vulnerabilities to infiltrate Iran's air-gapped Natanz nuclear facility via USB drives, destroying approximately 1,000 uranium enrichment centrifuges while masking its activity from operators.