The French Cyber Security Agency announced that a group of Russian military hackers known as the Sandworm group was behind a three-year operation in which they breached the internal networks of several French companies running Centreon IT surveillance software.
The attacks were detailed in a technical report published today by the Agence Nationale de la Sécurité des Systèmes d’Information, also known as ANSSI, the country’s main cybersecurity agency.
“This campaign mainly targeted information technology providers, particularly web hosting providers,” said ANSSI representatives today.
“The first victim appears to have been compromised since the end of 2017. The campaign lasted until 2020.”
The entry point into victim networks was with Centreon, a platform for monitoring IT resources developed by the French company CENTREON, and …