Connect with us

Hi, what are you looking for?



Secret US Documents on Ukraine War Plan Spill Onto Internet: Report

Secret documents that reportedly provide details of US and NATO plans to help prepare Ukraine for a spring offensive against Russia have spilled onto social media platforms.

Russian Cyberattacks

Secret documents that provide details of US and NATO plans to help prepare Ukraine for a spring offensive against Russia have spilled onto social media platforms, the New York Times reported on Thursday.

The Pentagon said it is assessing the reported security breach. “We are aware of the reports of social media posts, and the Department is reviewing the matter,” Deputy Press Secretary Sabrina Singh said.

The documents were spread on Twitter and Telegram, and reportedly contain charts and details about weapons deliveries, battalion strengths and other sensitive information, the Times said.

Information in the documents is at least five weeks old, with the most recent dated March 1, the report said.

One of the documents summarized the training schedules of 12 Ukraine combat brigades, and said nine of them were being trained by US and NATO forces, and needed 250 tanks and more than 350 mechanized vehicles, the newspaper said.

The documents — at least one of which carried a “top secret” label — were circulated on pro-Russian government channels, it said. Information in the documents also details expenditure rates for munitions under Ukraine military control, including for the HIMARS rocket systems, the US-made artillery rocket systems that have proven highly effective against Russian forces, it added.

The report quoted military analysts who warned that some documents appear to have been altered in a disinformation campaign by Russia, in one document inflating Ukrainian troop deaths and minimizing Russian battlefield losses.

Advertisement. Scroll to continue reading.

Industry Commentary Received by SecurityWeek: “Russia has tried to undermine confidence in the Ukrainian military with disinformation delivered through a variety of schemes. They regularly leak realistic, but fake disinformation, like documents. On several occasions they have planted fabricated disinformation in real leaked data. In all cases, the goal is to launder their disinformation through careless intermediaries. We are very fortunate that this leak has received such a skeptical reception.” – John Hultquist, Head of Mandiant Intelligence Analysis – Google Cloud

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...


Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet


The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...


Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.


ENISA and CERT-EU warn of Chinese threat actors targeting businesses and government organizations in the European Union.