Connect with us

Hi, what are you looking for?



Ukraine Cyber Official: We Only Attack Military Targets

Ukraine Cyber Army

Ukraine Cyber Army

A top Ukrainian cybersecurity official said Friday a volunteer army of hundreds of hackers enlisted to fight Russia in cyberspace is attacking only what it deems military targets, prioritizing government services including the financial sector, Kremlin-controlled media and railways.

Victor Zhora, deputy chair of the state special communications service, also said that there had been about 10 hostile hijackings of local government websites in Ukraine to spread false text propaganda saying his government had capitulated. He said most of Ukraine’s telecommunications and internet were fully operational.

Zhora told reporters in a teleconference that presumed Russian hackers continued to try to spread destructive malware in targeted email attacks on Ukrainian officials and — in what he considers a new tactic — trying to infect the devices of individual citizens.

 [ Read: Army of Cyber Hackers Rise Up to Back Ukraine ]

Three instances of such malware were discovered in the runup to the invasion.

Zhora said from a bunker in Kyiv that one job of civilian volunteer hackers is to try to obtain intelligence that can be used to attack Russian military systems. He said volunteers from Ukraine’s information technology sector also are addressing the Russian people directly with phone calls, emails and text messages. That includes sending videos and pictures of dead Russians soldiers.

Zhora did not offer details of damage done by the so-called Ukrainian Cyber Volunteers, which was created by a civilian cybersecurity executive in conjunction with Ukraine’s Defense Ministry after Russia’s invasion last week. Nor would the civilian, Yegor Aushev.

Advertisement. Scroll to continue reading.

Aushev said he coordinates a group of more than 1,000 “cyber volunteers,” all mustered through personal connections to avoid enemy infiltrators.

So far, damage to Russian targets appears to be restricted to defacements with antiwar messaging and graphic images of death and destruction in the hopes of mobilizing Russians against the invasion.

Hackers also have tried to knock government sites offline by flooding them with distributed-denial-of-service attacks, but Russian authorities have mostly beaten back those efforts.

U.S. Cyber Command has been assisting Ukraine since will before the invasion. Ukraine does not have a dedicated military cyber unit. It was standing one up when Russia attacked.

Zhora said his government anticipates an escalation in Russia’s cyber aggression and welcomes the continued assistance of global IT companies in helping it defend against cyberattacks.

RelatedUkraine: Worm-Spreading Data-Wiper With Ransomware Smokescreen

Related: Russia vs Ukraine – The War in Cyberspace


Related: Microsoft: Cyberattacks in Ukraine Hitting Civilian Digital Targets

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...


Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet


The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...


Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.


ENISA and CERT-EU warn of Chinese threat actors targeting businesses and government organizations in the European Union.