Sandworm is a strain of malware, used in Russian cyber-espionage campaign targeting NATO, European Union, Telecommunications and Energy sectors in 2014.
The attack relies on a zero day vulnerability in Windows known as CVE-2014-4114, patched in Bulletin MS14-060 of Microsoft’s October 2014 Patch Tuesday.
The name is rather dramatically borrowed from the famous 1960s science fiction epic Dune, where it refers to a sort of worm-like creature, hundreds or even thousands of metres long and as good as indestructible except with nuclear weapons.