In a recent cyber attack on Ukraine’s government databases, Deputy Prime Minister Olha Stefanishyna confirmed that the state registers, under the jurisdiction of the Ministry of Justice, were targeted by what is believed to be a Russian attack. Described as the largest external cyber attack on the state registers in recent times, Stefanishyna emphasized the critical importance of these systems and the need to counter such attacks.
The targeted attack led to the temporary suspension of the Unified and State Registers, prompting a coordinated response involving experts and specialists to restore the systems. Stefanishyna pointed out that the attack was aimed at disrupting the critically important infrastructure of the state and attributed it to Russian involvement.
The focus now lies on restoring key registers, including The State Register of Civil Status Acts of Citizens, the state register of legal entities and individuals of entrepreneurs, and the state register of rights to real estate and their burdens. Plans are in place to begin the restoration process within two weeks to minimize the impact of the cyber attack on essential services.
Ukraine’s Security Service has initiated a criminal investigation under Article 438 of the Criminal Code, which addresses violations related to laws and customs of war. The SSU Cyber Security Department has been actively involved in containing the cyber attack, with efforts concentrated on repelling the attack, restoring the infrastructure, and documenting the incident as a potential war crime.
Acting Head of the SSU cyber security department, Volodymyr Karastelyov, highlighted the main line of enquiry linking the cyber attack to Russian intelligence services, specifically pointing to a GRU hacker group as the likely perpetrator. This incident adds to the escalating cyber attacks from Russia against Ukraine, with previous attacks targeting various sectors ranging from electricity supplies to internet connections.
The timing of the cyber attack coincides with heightened tensions following the invasion of Ukraine in February 2022, with Russia accused of using cyber warfare as a means of disruption. Last year, Ukraine’s largest mobile provider, Kyivstar, fell victim to a cyber attack, resulting in widespread service disruptions.
Speaking at a recent Nato conference, UK cabinet minister Pat McFadden raised concerns about foreign adversaries weaponizing AI in their cyber attacks. He stressed the importance of vigilance in monitoring and countering such threats posed by countries like Russia, both publicly and through covert operations.
As the investigation into the cyber attack on Ukraine’s government databases unfolds, the focus remains on restoring critical infrastructure and strengthening cybersecurity measures to prevent future incidents of this nature. The implications of such attacks go beyond just disrupting services, highlighting the complex challenges posed by cyber warfare in the modern digital age.