From Stealth to Wipers: Inside Russia’s APT 44 AKA Seashell Blizzard
Find Threat Talks on
From Stealth to Wipers: How Seashell Blizzard Operates
They’ve been called Sandworm, APT 44, Iron Viking, and Electrum. But whatever the name, Seashell Blizzard is one of the most disruptive threat actors active today.
In this episode of Threat Talks, host Lieuwe Jan Koning is joined by ON2IT’s Yuri Wit and Rob Maas to explore the origins, methods, and impact of this Russian military-linked cyber group. Known for stealthy access, loud exits, and a habit of bragging about their work, Seashell Blizzard offers a case study in state-sponsored disruption.
Key topics:
· How Seashell Blizzard operates: what tactics and tools do they use
· What defenders can do to reduce the impact of their attacks
· Why visibility through EDR and threat intel is critical
Your cybersecurity experts
Lieuwe Jan Koning
Co-Founder and CTO
ON2IT
Yuri Wit
SOC Specialist, ON2IT
ON2IT
Rob Maas
Field CTO
ON2IT
Episode details
From Stealth to Wipers: How Seashell Blizzard Operates
Seashell Blizzard is known by many names – Sandworm, APT 44, Iron Viking, Electrum – but the tactics and impact are unmistakable. From bringing down the global shipping industry to disrupting Olympic systems and targeting Ukraine’s power grid, the group has made headlines for years.
In this episode of Threat Talks, host Lieuwe Jan Koning is joined by Yuri Wit and Rob Maas, representing Red Team and Blue Team respectively. As Yuri explains what tactics and tools Seashell Blizzard uses, Rob counters with what you can do to defend yourselves against these.
Together, they unpack how the group gains initial access via edge infrastructure, uses LOLBins for stealthy priviledge escalation and deploys tools like Tank Trap to distribute wiper malware across networks.
Stay tuned to find out how to stay ahead of Seashell Blizzard’s own Telegram announcements of their actions.
Get your Hacker T-shirt
Join the treasure hunt!
Find the code within this episode and receive your own hacker t-shirt for free.
