February 4, 2024 at 12:19PM CERT-UA has warned of over 2,000 computers in Ukraine infected with DirtyMoe malware, attributed to threat actor UAC-0027. The malware conducts cryptojacking and DDoS attacks, and is propagated through Purple Fox and fake software installers. Another campaign known as STEADY#URSA targets Ukrainian military personnel with a PowerShell backdoor. Gamaredon is … Read more
February 1, 2024 at 12:15PM CERT-UA warns of the PurpleFox malware infecting over 2,000 Ukrainian computers with potential backdoor, DDoS, and downloader capabilities. It utilizes a rootkit to persist and conceal its presence. CERT-UA provides methods to detect and remove the malware, including checking network connections, registry values, event logs, and specific file locations, and … Read more
January 26, 2024 at 12:05PM Ukraine’s Main Intelligence Directorate claims pro-Ukrainian hackers breached Russia’s Center for Space Hydrometeorology, wiping 2 petabytes of data. The agency is affiliated with Roscosmos, providing vital weather and disaster information. The attack reportedly paralyzed supercomputers and caused significant financial and research losses for Russia. This is not the first state-affiliated … Read more
January 13, 2024 at 09:31PM A 29-year-old Ukrainian man was arrested for orchestrating a massive cryptojacking scheme, using hacked accounts to create 1 million virtual servers and mine $2 million in cryptocurrency. Europol, in collaboration with Ukrainian authorities, tracked down the hacker, who is now facing criminal charges under the Criminal Code of Ukraine. Mitigating … Read more
January 13, 2024 at 05:24AM A 29-year-old Ukrainian national was arrested for a “sophisticated cryptojacking scheme,” making over $2 million in illicit profits. The arrest was made in Mykolaiv with help from Europol and a cloud service provider. The suspect used compromised cloud user accounts to mine cryptocurrencies, avoiding infrastructure costs. Properties were searched for … Read more
January 9, 2024 at 04:05PM Ukraine media reported a cyberattack by the Blackjack cyber group, allegedly linked to the Security Service of Ukraine, targeting Moscow ISP M9 Telecom. Sources claim it was in retaliation for the Russia-backed breach of Kyivstar and may be a prelude to further “serious revenge.” The group also took credit for … Read more
January 9, 2024 at 10:56AM Ukraine and Germany are accused of launching a cyberattack to disrupt a Bangladesh national election app. The app, used to provide election updates and candidate data, is impacted by slow performance. Although the exact nature of the attack is not specified, it’s suspected to be caused by botnets from Ukraine … Read more
January 5, 2024 at 06:30AM Ukraine’s Security Service took down two hacked residential surveillance cameras used by Russian threat actors to spy on Kyiv’s air defense and infrastructure. The hacked webcams were leveraged by Russia to aid its missile attack on Kyiv. This incident underscores the importance of maintaining cybersecurity for IoT devices, as they … Read more
January 5, 2024 at 02:36AM Sandworm crew, linked to Russia, launched a sophisticated cyber attack on Kyivstar, Ukraine’s telco giant, causing disruption to 24 million users’ mobile and internet services. The attack resulted in damage to infrastructure, air raid alert systems, and banking services. Experts believe this attack highlights the potential impact of cyber warfare … Read more
January 4, 2024 at 03:03PM In a recent interview, Illia Vitiuk, head of Ukraine’s SBU cybersecurity department, revealed that the Russian-backed cyberattack on Kyivstar caused extensive damage, impacting 24 million users and potentially resulting from an insider job. Vitiuk warned that Western organizations are also at risk and cautioned that this attack sends a strong … Read more