EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • A New Russian Cybercriminal Group Targets U.S. Oil and Gas Facilities

    A New Russian Cybercriminal Group Targets U.S. Oil and Gas Facilities

    Written by
    The Editorial Team
    02.10.25
    Industry and OT
    01
    MIN
    A New Russian Cybercriminal Group Targets U.S. Oil and Gas Facilities
    A New Russian Cybercriminal Group Targets U.S. Oil and Gas Facilities
    A New Russian Cybercriminal Group Targets U.S. Oil and Gas Facilities
    Image Cyberattacks Targeting the Defense Industrial Base Are Increasing
    Cybersecurity
    02.17.26 Cybersecurity
    Next article
    Cyberattacks Targeting the Defense Industrial Base Are Increasing
    Read
    01
    MIN
    Image EU: ageing IT systems in critical infrastructure make them vulnerable to Russian sabotage
    Industry and OT
    12.10.25 Industry and OT
    Next article
    EU: ageing IT systems in critical infrastructure make them vulnerable to Russian sabotage
    Read
    01
    MIN
    Image United Kingdom: the drinking water network targeted by five cyberattacks since early 2024
    Industry and OT
    11.10.25 Industry and OT
    Next article
    United Kingdom: the drinking water network targeted by five cyberattacks since early 2024
    Read
    01
    MIN
    Image Taiwan: Semiconductor Industry Targeted by Chinese Cyberattacks
    Industry and OT
    07.21.25 Industry and OT
    Next article
    Taiwan: Semiconductor Industry Targeted by Chinese Cyberattacks
    Read
    01
    MIN
    Named Sector 16, it collaborates with Z-Pentest, another Kremlin-linked group targeting critical infrastructure.

    On January 31, 2025, cybersecurity firm Cyble detailed the activities of a new cybercriminal group linked to the Russian government, called “Sector 16.” This entity has recently targeted oil and gas facilities in the United States and works with another Russian cybercriminal group, Z-Pentest. Emerging in 2024, Z-Pentest focuses on attacking Western critical infrastructure, particularly in the water and energy sectors.

    Sector 16 has claimed responsibility for two cyberattacks compromising industrial control panels. The first, conducted jointly with Z-Pentest, targeted an oil facility in Texas, specifically its SCADA system controlling pumps and storage tanks. The two groups released a video showing the hacked control panel interface, displaying real-time data on tank levels, pump pressures, and alarm management.

    Sector 16 then claimed sole responsibility for hacking another U.S. oil and gas production facility. The cybercriminal group published a video allegedly proving, according to Cyble, its access to the facility’s operational data and critical systems.

    In both cases, the intrusions did not result in operational disruptions. The attackers likely aimed to showcase their disruptive capabilities as a means of destabilization.

    The Editorial Team
    02.10.25
    Articles by the same author:
    1
    05.11.26 Cyber stability
    Canada: more than 42,000 data breaches in the tax system since 2020
    Read
    01
    MIN
    2
    05.11.26 Cyber stability
    Iranian APT group MuddyWater used Chaos ransomware as cover
    Read
    01
    MIN
    3
    05.11.26 Cyber stability
    Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Read
    01
    MIN
    4
    05.06.26 Cyber stability
    Australia establishes a commission of inquiry into major cyberattacks
    Read
    01
    MIN
    Image Cyberattacks Targeting the Defense Industrial Base Are Increasing
    Cybersecurity
    02.17.26 Cybersecurity
    Next article
    Cyberattacks Targeting the Defense Industrial Base Are Increasing
    Read
    01
    MIN
    Image EU: ageing IT systems in critical infrastructure make them vulnerable to Russian sabotage
    Industry and OT
    12.10.25 Industry and OT
    Next article
    EU: ageing IT systems in critical infrastructure make them vulnerable to Russian sabotage
    Read
    01
    MIN
    Image United Kingdom: the drinking water network targeted by five cyberattacks since early 2024
    Industry and OT
    11.10.25 Industry and OT
    Next article
    United Kingdom: the drinking water network targeted by five cyberattacks since early 2024
    Read
    01
    MIN
    Image Taiwan: Semiconductor Industry Targeted by Chinese Cyberattacks
    Industry and OT
    07.21.25 Industry and OT
    Next article
    Taiwan: Semiconductor Industry Targeted by Chinese Cyberattacks
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.