On Wednesday, Microsoft's threat intelligence team published new research into a group within Sandworm that the companys analysts are calling BadPilot. Microsoft describes the team as an “initial access operation” focused on breaching and gaining a foothold in victim networks before handing off that access to other hackers within Sandworms larger organization, which security researchers have for years identified as a unit of Russias GRU military intelligence agency. After BadPilot's
