Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Sandworm is a Russian GRU Unit 74455 APT group behind NotPetya and Ukraine power grid attacks targeting critical infrastructure.
Sandworm Definition: Sandworm is a Russian GRU Unit 74455 APT group behind NotPetya and Ukraine power grid attacks targeting critical infrastructure.
Sandworm is a highly destructive Russian state-sponsored advanced persistent threat group attributed to Unit 74455 of the GRU, Russia's military intelligence agency. The group is known for some of the most damaging cyberattacks on record, including the BlackEnergy attacks on the Ukrainian power grid, the NotPetya wiper outbreak, and attacks on the Winter Olympics. Tracked under aliases such as Voodoo Bear and Telebots, Sandworm specializes in disruptive operations against critical infrastructure and industrial control systems.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →