Targeting of French IT monitoring company
Date of report
  • February 2021
Russian APT Sandworm used two different malware strains to hack the IT monitoring software of French cybersecurity firm Centreon. The hacking campaign lasted from 2017 to 2020 and only affected entities using the open-source version of Centreon’s software.
Suspected victims
  • Fifteen entities, including France’s Ministry of Justice, that used Centreon’s outdated, open-source services
Suspected state sponsor
  • Russian Federation
Type of incident
  • Espionage
Target category
  • Private sector