Security News > 2021 > February > Russian Hackers Targeted Ukraine Authorities With Supply-Chain Malware Attack

Ukraine is formally pointing fingers at Russian hackers for hacking into one of its government systems and attempting to plant and distribute malicious documents that would install malware on target systems of public authorities.
"The purpose of the attack was the mass contamination of information resources of public authorities, as this system is used for the circulation of documents in most public authorities," the National Security and Defense Council of Ukraine said in a statement published on Wednesday.
The NSDC's National Coordination Center for Cybersecurity termed it a supply chain attack aimed at the System of Electronic Interaction of Executive Bodies, which is used to distribute documents to officials.
While the NSDC did not take any names, it's not immediately clear when the attack took place, how long the breach lasted, and if any of the infections were successful.
The development comes two days after the NSDC and NCCC warned of massive distributed denial-of-service attacks singling out websites belonging to the security and defense sector, including that of the NSDC. "It was revealed that addresses belonging to certain Russian traffic networks were the source of these coordinated attacks," the NSDC said, while stopping short of directly accusing the country.
The infected systems were then used to carry out further DDoS attacks on other Ukrainian sites, the agency said.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/4zM5KLeXtpw/russian-hackers-targeted-ukraine.html
Related news
- Russian military hackers deploy malicious Windows activators in Ukraine (source)
- Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers (source)
- ⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Malware, BYOVD Tactics, and More (source)
- Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
- Hacker pleads guilty to SIM swap attack on US SEC X account (source)
- BadPilot network hacking campaign fuels Russian SandWorm attacks (source)
- North Korea targets crypto developers via NPM supply chain attack (source)
- North Korean hackers spotted using ClickFix tactic to deliver malware (source)
- whoAMI attacks give hackers code execution on Amazon EC2 instances (source)
- Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts (source)