Russian hackers intensify massive attacks on critical infrastructures of Ukraine and allies

The State Special Communications Service of Ukraine said that pro-Russian hackers are carrying out cyberattacks on service providers, media, and critical infrastructure of our country and partner countries. Ukrainian officials and independent experts have repeatedly reported that a period of «intense network operations» has begun as the topic of the Ukrainian Armed Forces counteroffensive has become more and more popular in the media.

Hacker attacks by Russia are needed to «create the impression of large-scale criminal cyber activity, even if this activity is not successful,» cybersecurity experts say. For example, last week the Killnet group announced its intention to strike at key European banks, including IBAN and SWIFT systems used for transactions, including to charitable foundations in Ukraine. However, no real attacks took place. The European Central Bank noted that its systems are working normally. A SWIFT representative also said that the system is working without problems.

Last Friday, another group of the terrorist state, Beregini, posted online a document from the US Department of Defense describing the efforts of the international coalition supporting Ukraine to speed up the delivery of air defense systems. However, this document contains a «CUI» stamp, which stands for controlled, unclassified information. The US Department of Defense emphasized that they could not confirm the authenticity of the document.

Another incident involved Microsoft — the company reported on a group of hackers related to the Russian military intelligence (GRU) — Cadet Blizzard. Hackers of the aggressor country hack social networks and steal personal data of users through Microsoft accounts.

It also became known about the activities of Russian cybercriminals Shuckworm. According to experts from Symantec Threat Hunter Team, these hackers are targeting the Security Service of Ukraine, the military, and government organizations. «The attackers have repeatedly tried to access and steal confidential information, such as reports on the deaths of Ukrainian soldiers, clashes with the enemy and air strikes, arsenal stocks, and military training,» Symantec said.

Just three days ago, hackers from Russia launched a large-scale cyberattack on US government agencies. The responsibility was claimed by the Clop cyber group, which usually demands «multimillion-dollar ransoms.» One of Reuters' sources in the Justice Department noted that the attack even affected a defense nuclear waste disposal facility in New Mexico.

And in late May, Russian cybercriminals known as «Sunpeak» announced an attack on Ukraine’s military logistics. According to the attackers, they managed to gain access to files without which it would be impossible to supply weapons to Ukraine through the Southern Mining and Processing Plant (SMP). However, Mykhailo Korsakov, the external communications manager of the Southern Mining and Processing Plant, denied this information.