According to Ukrainian counterintelligence and Western intelligence agencies, APT28, a Russian military intelligence agency (GRU)-connected hacking group, targeted a chlorine plant in Ukraine with a malware attack in July 2018. Plant workers were able to thwart the attack, which reportedly aimed to install malware to snoop on encrypted web traffic, establish a backdoor on compromised devices, and allow for disruptions of plant operations. Some aspects of the malware code overlapped with a previously identified malware known as BlackEnergy, which was used to target a Ukrainian power distribution station.