The 5 Eyes nations comprising Australia, Canada, New Zealand, the U.Yard., and the U.Due south., forth with Ukraine and the European Union, formally pinned Russian federation for masterminding an attack on an international satellite communication (SATCOM) provider that had “spillover” effects across Europe.
The cyber offensive, which took place one hour earlier the Kremlin’south military invasion of Ukraine on February 24, targeted the KA-SAT satellite network operated by telecommunication company Viasat, crippling the operations of wind farms and net users in cardinal Europe.
Viasat, in late March, disclosed that it had shipped nearly xxx,000 modems to distributors to restore service to customers whose modems were rendered unusable.
“This cyberattack had a pregnant bear upon causing indiscriminate communication outages and disruptions across several public authorities, businesses and users in Ukraine, as well every bit affecting several E.U. Member States,” the Council of the European Union said.
Calling it a deliberate and unacceptable cyberattack, the nations pointed fingers at Russia for its “connected pattern of irresponsible beliefs in cyberspace, which also formed an integral part of its illegal and unjustified invasion of Ukraine.”
The U.Due south. State Section said the digital assaults confronting commercial satellite communications networks were orchestrated to disrupt Ukrainian military command-and-control capabilities during the invasion.
An analysis from cybersecurity house SentinelOne published final month revealed that the intrusion aimed at Viasat involved the use of a information-wiping malware dubbed AcidRain that’s designed to remotely sabotage tens of thousands of vulnerable modems.
Furthermore, the discovery unearthed similarities between AcidRain and “dstr,” a third-phase wiper module in VPNFilter, a botnet malware previously attributed to Russia’south Sandworm group.
Besides the Viasat attacks, Australia and Canada also blamed the Russian government for targeting the Ukrainian cyberbanking sector in Feb 2022, COVID-19 vaccine research and development in 2020, and interfering in Georgia’s 2020 parliamentary elections.
The attribution comes as Ukraine has been at the receiving terminate of a number of destructive attacks directed at public and private sector networks since the starting time of the year, launched every bit role of Russian federation’s “hybrid” warfare strategy in concert with footing warfare.
The U.Chiliad.’southward National Cyber Security Centre (NCSC) noted that Russian military intelligence agencies were “virtually certainly” involved in the deployment of WhisperGate wiper malware and the defacements of several Ukrainian websites in January 2022.
AcidRain and WhisperGate are part of a long listing of information wiper strains that has hit Ukraine in recent months, which also includes HermeticWiper (FoxBlade aka KillDisk), IssacWiper (Lasainraw), CaddyWiper, DesertBlade, DoubleZero (FiberLake), and Industroyer2.
“Russian hackers have been waging state of war against Ukraine in the cyberspace for the past viii years,” the Land Service for Special Advice and Data Protection of Ukraine (SSSCIP) said in a argument, adding they “pose a threat non but to Ukraine, but to the whole world.”
“Their purpose is to damage and destroy, to wipe out data, to deny Ukrainian citizens’ access to public services equally well every bit to destabilize [the] situation in the country, to spread panic and distrust in the regime among the people.”
Institute this commodity interesting? Follow THN on Facebook, Twitter
and LinkedIn to read more exclusive content we post.