Zum Inhalt springen

Major Cyber Incident: NotPetya22

Other incident names: ExPetr, SortaPetya, Petna, ExPetr, Diskcoder.C, Nyetya, GoldenEye

About NotPetya

The Russian military intelligence service, the GRU, used a Trojan to initially target
Ukrainian infrastructure with a wiper called NotPetya. The attack spread worldwide to
become what the United States considered the most destructive and costly cyberattack
in history. IT companies linked the campaign to the APT group Sandworm, who have been
linked to many disruptive cyberattacks against Ukraine, such as the two consecutive
energy blackouts in Ukraine at the end of 2015 & 2016. Multiple governments attributed
the campaign to the GRU and its Unit 74455 that is generally associated with Sandworm.
Political and legal action was taken by the European Union and several individual
governments in response.


From 27 June 2017

Incident Type

Disruption, Hijacking with Misuse


Russian stateaffiliated group “Sandworm

Affected Target

Ukrainian Infrastructure and hundreds of entities across the world

Mehr Major Cyber Incidents (MaCIs)

  • Research and Analysis
Major Cyber Incident: KA-SAT 9A

4 Oktober 2023
In dieser detaillierten Analyse erörtern Mika Kerttunen, Kim Schuck und Jonas Hemmelskamp den Angriff auf die KA-SAT-Netze in der Ukraine und Westeuropa in der Anfangsphase des russischen Krieges gegen die Ukraine.
Major Cyber Incident: BAPCO

15 Februar 2023
In dieser detaillierten Analyse erörtern Mika Kerttunen und Linda Liang den Angriff auf den bahrainischen Ölkonzern BAPCO durch vom iranischen Staat unterstützte Hacker.

Welcome to our Cyber Incident Dashboard!

For best results, please view on a desktop device.