РНБОУ National Security and Defense Council of Ukraine

The NCCC at the NSDC of Ukraine has detected signs of preparation for a large-scale coordinated attack on state authorities of Ukraine and critical infrastructure on the eve of the Independence Day

The National Coordination Center for Cybersecurity under the National Security and Defense Council of Ukraine (the NCCC at the NSDC of Ukraine) warns of the intensification of the “Gamaredon” hacker group, which is backed by special services of the Russian Federation.

Specialists of the NCCC at the NSDC of Ukraine have detected a tendency to modernize the software for cyberattacks in order to increase the effectiveness of overcoming the means of protection and concealment of their activities in compromised systems.

Recent attempted attacks use malicious attachments that mimic documents of public authorities, including the Security Service of Ukraine. Criminals send malicious documents by e-mail, and when they are opened, hackers gain access to the systems and networks of a government agency.

Specialists of the NCCC at the NSDC of Ukraine noted that the analysis of the malware revealed signs of preparation for a large-scale coordinated attack on state authorities and critical infrastructure aimed at destabilizing the situation in Ukraine on the eve of the Independence Day and during the preparation for the upcoming local elections.

Secretary of the National Security and Defense Council of Ukraine Oleksiy Danilov stressed that all actors of the security and defense sector that provide cybersecurity in various areas work in a constant mode of tracking, preventing and repelling cyberattacks. “Cyber ​​threats from the Russian Federation are extremely dangerous for both Ukraine and European countries”, - he said.

“Immediate informing by the NCCC at the NSDC of Ukraine about detected cyberattacks on information systems of government agencies, critical infrastructure facilities is essential for coordinating prompt response, because the consequences of cyberattacks can pose a significant threat to vital interests of the state and society”, - the NSDC Secretary underscored.

The NCCC under the NSDC of Ukraine has already warned cybersecurity actors about the danger. If indicators of compromise are detected, the NCCC at the NSDC of Ukraine should be informed immediately (e-mail: report@ncscc.gov.ua).