Microsoft Uncovers Sandworm Subgroup’s Global Cyber Attacks Spanning 15+ Countries

A subgroup of the Russian state-sponsored hacking group Sandworm, known as Seashell Blizzard, has been linked to a global cyber attack campaign dubbed BadPilot. The campaign, active since late 2021, has targeted a wide range of sectors and countries, including the United States, Europe, and several countries in Asia and Africa. The group has exploited various known security vulnerabilities and employed a combination of opportunistic and targeted intrusions to establish persistent access to compromised systems.