{"id":188233,"date":"2026-02-17T11:52:00","date_gmt":"2026-02-17T16:52:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/17\/newly-identified-hacking-groups-provide-access-to-ot-environments\/"},"modified":"2026-02-17T12:05:09","modified_gmt":"2026-02-17T17:05:09","slug":"newly-identified-hacking-groups-provide-access-to-ot-environments","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/17\/newly-identified-hacking-groups-provide-access-to-ot-environments\/","title":{"rendered":"Newly identified hacking groups provide access to OT environments"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/new-hacking-groups-access-ot-environments\/812323\/\">Newly identified hacking groups provide access to OT environments<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/new-hacking-groups-access-ot-environments\/812323\/\">https:\/\/www.cybersecuritydive.com\/news\/new-hacking-groups-access-ot-environments\/812323\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-17 11:52:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecuritydive.com\">www.cybersecuritydive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>Security researchers identified three new threat groups that either provided access to or launched direct attacks against operational technology environments, according to a report released Tuesday by Dragos.\u00a0<br \/>\nA group tracked as Sylvanite\u00a0provides initial access for Voltzite, which overlaps with the group commonly known as Volt Typhoon.\u00a0<br \/>\nVolt Typhoon is a state-linked threat group that U.S. authorities previously warned has targeted U.S. critical infrastructure sites for disruptive attacks in the event of a military conflict in the Asia-Pacific region.\u00a0<br \/>\nDragos researchers warn that Sylvanite is a distinct group providing initial access by abusing edge devices.\u00a0<\/p>\n<p>\u201cIt\u2019s not the team trying to gain long-term access and OT \u2014 that\u2019s Voltzite\u00a0\u2014\u00a0but it is the team working with or for Voltzite that is going in and developing the access,\u201d Robert Lee, co-founder and CEO of Dragos, said during a media briefing last week.\u00a0<br \/>\nSylvanite was linked to a May 2025 incident at a U.S. utility company where vulnerabilities in Ivanti Endpoint Manager Mobile were exploited, including CVE-2025-4427 and CVE-2025-44428, according to the report.\u00a0<br \/>\nAzurite, a group that overlaps with Flax Typhoon, uses compromised small office\/home office environments to target engineering workstations, according to Dragos. The group uses living-off-the-land techniques to maintain persistence.\u00a0<br \/>\nA third group, tracked as Pyroxene, uses social engineering techniques. including fake LinkedIn profiles, to pose as recruiters. The group has expanded operations from the Middle East into North America and Western Europe since 2023, targeting aerospace, defense, maritime and other sectors.<br \/>\nIn 2025, the group deployed wiper malware against multiple targets in Israel, around the time of the 12-day military conflict with Iran, according to Dragos. Researchers warn the group is actively positioning for future operations that could impact industrial control systems.\u00a0<br \/>\nBeyond these newly identified threat groups, researchers warned that existing groups are expanding operations.\u00a0<br \/>\nKamacite operates as the access team for Electrum, a long time adversary linked to 2015 attacks against the Ukrainian power grid. Kamacite was linked to an escalation of attacks from 2024 to 2025 targeting ICS supply chains in Europe, according to Dragos.\u00a0<br \/>\n\u201cThere is no other team in the world that has as much experience taking down infrastructure as Electrum,\u201d Lee said during the briefing.\u00a0<br \/>\nLee also said that as the cyber phase of the war in Ukraine winds down, experienced threat groups are beginning to target industries in other parts of the world, including Europe and the U.S.\u00a0<\/p>\n<p>As an example of the threat, Electrum was linked to the December attack against the electrical grid in Poland. That attack targeted multiple facilities, including wind farms and solar installations, according to Dragos, which was part of the incident response team.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Newly identified hacking groups provide access to OT environments https:\/\/www.cybersecuritydive.com\/news\/new-hacking-groups-access-ot-environments\/812323\/ Publish Date: 2026-02-17 11:52:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":188234,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/ux9cDDDT0aud-ZXc00WNDBYdmm7VD6kR_2b9Z74UhGw\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMzg5OTQzNTI4LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[32],"class_list":["post-188233","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/188233"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=188233"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/188233\/revisions"}],"predecessor-version":[{"id":188235,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/188233\/revisions\/188235"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/188234"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=188233"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=188233"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=188233"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}