Security Experts:

Connect with us

Hi, what are you looking for?



Cyber Attack Risks Poised to Soar as Russia Attacks Ukraine

Russia’s military assault against Ukraine is likely to be accompanied by a wave of cyberattacks that could wreak havoc on computer systems far beyond the countries’ borders, security experts warn.

Russia’s military assault against Ukraine is likely to be accompanied by a wave of cyberattacks that could wreak havoc on computer systems far beyond the countries’ borders, security experts warn.

On Wednesday, just hours before Moscow sent troops into its neighbour’s territory, the websites of several Ukrainian banks and government agencies were disabled by so-called denial of service (DDoS) attacks that Kyiv claimed were of Russian origin.

Cyber security firm ESET said Wednesday that malware capable of erasing data had been found on hundreds of computers in Ukraine, an attack that appears to have been planned two months ago.

The Ukraine government had already seen dozens of official sites hacked last month in attacks it blamed on Russia, despite Moscow’s denial.

“Russia is very good at mixing the private actors and state actors,” said Serge Droz, head of security at Protonmail, the encrypted email provider.

[ READ: Russia, Ukraine and the Danger of a Global Cyberwar ]

He said that Russian President Vladimir Putin has acknowledged the existence of “patriotic” hackers, and Moscow is widely thought to have orchestrated the massive cyberattack that crippled Ukraine’s electricity network in December 2015.

“It didn’t create huge physical damage, but it created a lot of psychological damage — it’s like disinformation and manipulating the public opinion,” Droz said.

– Western nations brace –

The threat of widespread sanctions against Russia by the West could spark Moscow to retaliate by launching cyberattacks against targets in Europe and the US.

Germany said Thursday that it was bolstering its cyber defences to ward off Russia-based attacks, while the European Union is prepared to activate an EU cyber response team to help Ukraine face with the threat.

“If you’re suddenly having 190,000 troops attack Ukraine, chances are… that the cyberattack will not be a single piece of malware,” Mark Warner, chair of the US Senate Intelligence Committee, told the Axios news site.

“If you unleash not one, but five, or 10, or 50, or 1,000 at Ukraine, the chances of that staying within the Ukrainian geographic border is quite small,” he said.

“It could spread to America, could spread to the UK, but the more likely effect will be spreading to adjacent geographic territory” such as Poland.

Governor Kathy Hochul of New York announced Sunday reinforced cyber security efforts in the face of the “current geopolitical uncertainty,” saying her state was home to leading targets in finance, energy and transportation sectors.

Washington has already accused criminals with alleged ties to the Russian government of carrying out vast ransomware attacks against critical infrastructure, such as the May 2021 attack of the Colonial Pipeline that shut down oil shipment for days.

But IT experts say they have learned to recognise many of the tactics employed by Russia-linked hackers, which could help limit the threat as governments and companies increase their surveillance.

“We have a long experience with these actors. We know a lot about them and that means that we can actually develop defences that counteract their methods,” said John Hultquist, vice president for intelligence analysis at the cyber security firm Mandiant.

His company has set up a dedicated task force during the Ukraine crisis, which “has already proven to be a catalyst for additional aggressive cyber activity that will likely increase as the situation deteriorates,” according to its website.

Related: More Russian Attacks Against Ukraine Come to Light

Related: Microsoft Uncovers Destructive Malware Used in Ukraine Cyberattacks

Related: Ukraine Attack: Hackers Had Access for Months Before Causing Damage

Related: Ukraine Attacks Involved Exploitation of Log4j, October CMS Vulnerabilities

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.