The NCCC at the NSDC of Ukraine has updated information on cyberattacks on the document management system of state bodies
The National Coordination Center for Cybersecurity at the National Security and Defense Council of Ukraine has detected additional data on cyberattacks using document management systems, which were reported on February 24, this year. These attacks were carried out through the electronic document management system ASKOD.
The cyberattack can be linked to one of Russia's hacker spy groups Pterodo/Gamaredon. Give this, the NCCC recommends, if possible, to block on firewalls and monitor the following ranges of IP addresses commonly used by this group:
126.96.36.199 - 188.8.131.52
184.108.40.206 - 220.127.116.11
18.104.22.168 - 22.214.171.124
126.96.36.199 - 188.8.131.52
184.108.40.206 - 220.127.116.11
18.104.22.168 - 22.214.171.124
126.96.36.199 - 188.8.131.52
184.108.40.206 - 220.127.116.11
18.104.22.168 - 22.214.171.124
126.96.36.199 - 188.8.131.52
184.108.40.206 - 220.127.116.11
18.104.22.168 - 22.214.171.124
126.96.36.199 - 188.8.131.52
As reported previously, the NCCC at the NSDC of Ukraine warns of a cyberattack on the document management system of state bodies.
The purpose of the attack was the mass contamination of information resources of public authorities, as this system is used for the circulation of documents in most public authorities.