Ukraine’s state registers, managed by the Ministry of Justice, have fallen victim to a major cyber-attack, prompting the Security Service of Ukraine (SSU) to launch a criminal investigation into the incident, pointing the finger at Russia as the culprit.
The SSU has determined that a hacker group linked to the main intelligence directorate of the Russian armed forces (GRU) was responsible for the cyber-attack. Deputy Prime Minister for European and Euro-Atlantic Integration of Ukraine and Minister of Justice, Olga Stefanishyna, also accused Russia of carrying out the attack in a Facebook post on December 19.
“It is evident that the Russians orchestrated this attack to disrupt the critical infrastructure of the state,” she stated. “The enemy aims to exploit this situation for intelligence purposes and create panic among the citizens of Ukraine and abroad.”
Russia has remained silent on the allegations made against them.
Following the targeted attack, the operation of the Unified and State Registers under the jurisdiction of the Ministry of Justice of Ukraine has been temporarily halted. Stefanishyna reassured that efforts are underway to combat the cyber-attack and restore the affected systems by collaborating with internal teams and specialists from other services.
The SSU Cyber Security Department has been mobilized to contain the attack and work towards restoring the infrastructure. Acting Head of the SSU Cyber Security Department, Volodymyr Karastelyov, highlighted the three key areas of focus: repelling the attack, rebuilding the infrastructure, and documenting the malicious act. The investigation is mainly centered around Russian intelligence services, specifically a GRU hacker group.
Preliminary assessments have indicated that there are no imminent threats to other resources. Once full recovery is achieved, a comprehensive analysis of the attack will be conducted in conjunction with relevant authorities to bolster defenses against future cyber threats.
“We are closely monitoring the situation and taking all necessary measures to expedite the restoration of all services,” Stefanishyna affirmed.
The priority for restoration will be given to crucial registers such as the State Register of Civil Status Acts of Citizens, the state register of legal entities and individuals of entrepreneurs, and the State register of rights to real estate and their burdens. Stefanishyna estimated the initial recovery timeline to be within two weeks.
In the wake of this cyber-attack, Ukraine remains vigilant and proactive in safeguarding its critical infrastructure against external threats. The resilience and determination displayed in the face of such challenges underscore the country’s commitment to upholding cybersecurity measures and protecting national interests.