Who's Actually Behind the Cyberattacks Hitting Ukraine?
Important government and infrastructure sites in Ukraine were hit with devastating data wiper cyberattacks hours before Russia’s invasion. This kind of attack is like ransomware in that it renders important files or entire computers unusable. It just doesn’t offer to undo the damage for money. Logically it would seem that Russia is behind these attacks, but so far there isn't any hard evidence of that. Researchers at security giant ESET dug into the code of the wiper malware and learned a lot about how it works and when it was deployed, even though they still can't prove the source of the attack.
While all security companies are keeping an eye on the cyberattacks against Ukraine, ESET has a special reason to be interested. ESET has its headquarters in Bratislava, capital of the Slovak Republic, which borders on the west side of Ukraine, not far from Lviv. I asked a contact at the company how, if at all, the war in Ukraine is affecting them. "Bratislava, where ESET’s HQ is located is a fair distance from the border with Ukraine," he explained. "So far, the only impact of the conflict on Slovakia are refugees arriving at the border who are receiving immediate help from local authorities.""We are collaborating with Ukrainian organizations affected by the recent cyber-attacks and assisting them in any way we can," he continued. "Furthermore, ESET have provided financial and humanitarian support."
Experts have dubbed the damaging malware HermeticWiper because it was digitally signed by a small game company called Hermetica Digital Ltd, based in the Mediterranean island country of Cyprus. Early reports assumed that the digital certificate was stolen from that company, but that apparently isn’t true. The company reports it
Read more on pcmag.com
