Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

US, Britain Accuse Russia of Cyberattacks Targeting Ukraine

The White House blamed Russia on Friday for this week’s cyberattacks targeting Ukraine’s defense ministry and major banks and warned of the potential for more significant disruptions in the days ahead.

The White House blamed Russia on Friday for this week’s cyberattacks targeting Ukraine’s defense ministry and major banks and warned of the potential for more significant disruptions in the days ahead.

Anne Neuberger, the Biden administration’s deputy national security adviser for cyber and emerging technologies, said the U.S. had rapidly linked Tuesday’s attacks to Russian military intelligence officers.

Britain joined the U.S. in blaming the GRU military intelligence agency for the distributed denial-of-service attacks that unfolded as tensions escalate between Russia and Ukraine.

The attacks, which knocked government websites and a couple of major banks offline for much of the day, were of “limited impact” since Ukrainian officials were able to quickly get their systems back up and running, Neuberger said.

But she said the Russians could also be laying the groundwork for more disruptive activities that could accompany an invasion of Ukraine.

“We do expect that should Russia decide to proceed with a further invasion of Ukraine, we may see further destabilizing or destructive cyber activity, and we’ve been working closely with allies and partners to ensure we’re prepared to call out that behavior and respond,” Neuberger said.

She said the U.S. was publicly blaming the Kremlin because of a need to “call out the behavior quickly.”

Advertisement. Scroll to continue reading.

“The global community must be prepared to shine a light on malicious cyber activity and hold actors accountable for any and all disruptive or destructive cyber activity,” Neuberger said.

The British Foreign Office said the attack “showed a continued disregard for Ukrainian sovereignty. This activity is yet another example of Russia’s aggressive acts against Ukraine.”

Neuberger said there was no intelligence indicating that the U.S. would be targeted by a cyberattack, but that remained a concern, giving that the banking system does not have the “cyber resilience” that it should.

Ukrainian officials called Tuesday’s denial-of-service attacks the worst in the country’s history. But while they definitely disrupted online banking, impeded some government-to-public communications and were clearly intended to cause panic, they were not particularly serious by global or historic standards, said Roland Dobbins, the top engineer for DDoS at the cybersecurity firm Netscout.

“Most DDoS attacks succeed due to the lack of preparation on the part of the defenders,” said Dobbins, adding that most commercial mitigation services designed to counter such attacks would likely have been able to fend off Tuesday’s attacks.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cyberwarfare

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Cyberwarfare

ENISA and CERT-EU warn of Chinese threat actors targeting businesses and government organizations in the European Union.