Researchers have uncovered a modified version of the Industroyer malware that was used to target the Ukrainian energy sector in 2016. Dubbed Industroyer2, the malware includes wiper and worm capabilities that target Windows, Linux and Solaris operating systems within Industrial Control System (ICS) environments. Researchers have attributed Industroyer2’s development and deployment to the Russian state actor Sandworm due to similarities in code to Industroyer as well as the attack happening at a time when the two countries are at war.

Download the report