The CERT-UA Government Computer Emergency Response Team, operating under the State Service for Special Communications and Information Protection, registered and investigated more than 2,100 cyber incidents and cyber attacks during 2022.
As reported by the State Service for Special Communications and Information Protection of Ukraine on its website, more than 1,500 of the total number of cyber attacks have been registered since the beginning of Russia’s full-scale military invasion of Ukraine.
According to CERT-UA, the public sector is the most frequently targeted by enemy hackers, accounting for about one quarter of all cases studied.
In addition, the energy sector remains under the special attention of Russian hackers – cyber attacks on energy enterprises are difficult to carry out and prepare, they are harder to detect.
Companies that are providers of services, hardware and software for energy companies are under constant scrutiny. As such, supply chain attacks remain a growing threat. In particular, in December 2022, experts recorded an attempt to attack one of the Ukrainian energy facilities by hacking a software supplier and developer.
In addition, enemy hackers actively attacked the logistics, telecommunications, commercial and defense sectors.
Ukraine’s government emergency response team CERT-UA, operating under the State Service for Special Communications and Information Protection, warns of the distribution of new dangerous emails with the subject “Final Payment”.
“Opening the archive will download malware and, as a result, steal data,” the message says.
CERT-UA links the attack to UAC-0041 (“Russian hacktivists”).
The governmental emergency response team of Ukraine CERT-UA, operating under the State Service for Special Communications and Information Protection, warns of the intensification of online fraud using the topic of “monetary compensation”,
“A number of fraudulent pages have been discovered on the Facebook social network, containing a link to the so-called “Unified Compensation Center for the Return of Unpaid Funds,” the State Special Communications Service reports.
According to the message, this resource offers to provide personal information and make an additional payment. If these requirements are met, the payment card data will be compromised.