Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

Ukraine War Already in Full Swing in Cyberspace

Ukraine Cyber Attacks

Ukraine Cyber Attacks

KIEV – With cyberattacks already launched against Crimean separatists, the Kremlin and NATO, the ground war may not have started in Ukraine but computer warfare is already raging.

In recent days — and with increasing intensity on Sunday — a virtual war has commenced in the countries at the center of the worst East-West diplomatic crisis since the end of the Cold War.

The “soldiers” of this war don’t wear uniforms and don’t necessarily swear allegiance to one particular country. Their chosen weapon is the “Denial of Service” attack designed to overwhelm web servers and make their websites unusable.

The attacks accelerated as soon as voting booths opened on Sunday for the referendum in Crimea on whether the region will join Russia.

The site created by separatist groups to monitor the vote was blocked for an hour on Sunday, with the pro-Russian government accusing hackers from an American university, Urbana-Champaign in Illinois, of being behind the attack.

Cyber War in Ukraine

A few hours earlier, NATO, which has come out in support of the new, pro-Western government in Kiev, reported an attack on its servers by Ukrainian hackers using the name “CyberBerkut” which shut down three of its websites.

In a message posted on their own site, the group said it will “not allow a NATO presence on the territory of our homeland.”

The group’s name is a reference to “Berkut”, the riot police unit used by former Ukrainian president Viktor Yanukovych against anti-government protesters prior to his ouster last month.

Advertisement. Scroll to continue reading.

Although the sites could not be used for several hours, NATO spokesperson Oana Lungescu said the attacks had no operational impact.

– ‘Digital Flag-Burning’ –

A little more than 24 hours earlier, it was the Internet sites of the Russian Kremlin, foreign ministry, central bank and press agency Ria Novosti that were targeted.

“These attacks are the digital equivalent of flag-burning” during a protest, said Arne Ansper, an IT security expert in Tallinn.

They “shut down the primary information channel of the attacked organisations, but perhaps the more important goal is to humiliate those organisations,” Ansper added.

Cyberattacks have remained a covert tactic, with governments and international organisations refusing to openly admit their use. Neither Russia nor NATO has admitted to being involved in cyber attacks.

“It is very difficult to identify attackers,” said Ansper. “Anyone can claim the operation. It is even more difficult to tell if they are acting on their own, or if they are fulfilling the orders of someone else.”

Denial of Service attacks had already become a key part of the struggle over Ukraine long before the crisis escalated.

According to a report by British defense firm BAE Systems, a powerful digital virus has infiltrated computers in Ukraine on at least 22 occasions since 2013.

Known as “Snake”, the virus is “one of the most sophisticated and most persistent threats that we have studied,” the report said.

Snake first appeared in 2006, but appears to have been deployed in a more aggressive fashion over the past few months, with Ukraine the primary target.

BAE Systems suspects “a well-organised and technically sophisticated group”, but did not speculate further on the origins of the attacks.

Experts who spoke to AFP said the virus did not necessarily come directly from the Russian government. 

Russia has the means to erase any traces of its cyber intrusions and would have been more discreet, said Eugene Kaspersky, head of the Russian IT security firm that bears his name, saying that Snake looked more like a “phishing virus” than a “cyber-weapon”. 

Related Reading: Kaspersky Details Connections Between ‘Snake’ and Agent.BTZ Malware

Related Reading: Ukraine’s Computers Targeted by Powerful Malware: Experts

Related Reading: Russia, Ukraine Conflict Enters Cyberspace

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cyberwarfare

Russian espionage group Nomadic Octopus infiltrated a Tajikistani telecoms provider to spy on 18 entities, including government officials and public service infrastructures.

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Cyberwarfare

Several hacker groups have joined in on the Israel-Hamas war that started over the weekend after the militant group launched a major attack.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Cybercrime

On the first anniversary of Russia’s invasion of Ukraine, cybersecurity companies summarize the cyber operations they have seen and their impact.

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...