An elite hacker group from the Russian army, Sandworm, has claimed responsibility for the attack on a dam in the Yonne. After analysis, it turns out that it did take place, but not really at the place in question.
Among the countries actively engaged in what is called cyberwarthere Russia is regularly talked about. Don’t think that the threat only targets distant countries: France is one of the targets. In 2023, we remember that the French visa application platform was taken offline following a collective attack by service saturation. More recently, several government sites suffered a cyberattack coordinated by the Russian group Anonymous Sudan.
This time, it is Sandworm referred. This elite Russian military intelligence unit specializes in, among other things, target infrastructures where hacking has a very concrete impact. On the chain Telegram CyberArmyofRussia_Reborncontrolled by Sandworm, hackers have for example claimed to have hacked the water distribution and storage system serving several Texas cities. Via the same communication channel, the group this time boasts of having hacked a French dam. Except he was wrong.
Even the best hackers in the Russian army can make mistakes, proof
Released on March 2, a video filmed by a drone shows the sabotage of the Courlon-sur-Yonne hydraulic power stationin the 89. We see the dam and the valve control software, which the pirates open to let water flow downstream. The attack did take place, but it affected… a mill. In this case the Courlandon hydraulic power station in the Marne, installed in an old water mill in the village of 300 inhabitants.
The consequences went unnoticed: the water level downstream has just dropped by 20 cm. Romain Eudes, operator of the plant, specifies that the risk is very limited. “From a distance, aside from switching power generation off and on, there’s not much a hacker can do. There is security everywhere in these installations, including physical security, with a spillway which means that the river cannot overflow.“.
For now, we don’t know how Sandworm managed to make such a mistake. The National Information Systems Security Agency, responsible for France’s digital protection, did not wish to comment on the attack.
Source: Le Monde