GREYENERGY: BEYOND BLACKENERGY AND NOTPETYA

GREYENERGY: BEYOND BLACKENERGY AND NOTPETYA

Robert Lipovsky and Anton Cherepanov, ESET

In this talk, we’ll uncover connections between several APT groups that have been terrorizing critical infrastructure in Ukraine in the past few years but have, in some cases, been active in other countries as well. The main focus of the talk will be the introduction of GreyEnergy – a malware framework which has been used in stealthy operations against energy companies in Europe, and which we consider to be the successor to BlackEnergy.