The 22nd of July, Cyber News

Ukraine  

In Ukraine, a Serious System of Protection against Cyber Attacks Has Been Created – Danilov

The information and analytical system of SOTA is a closed system that is reliably protected. In addition, a powerful system of protection against enemy cyber attacks has been created in Ukraine. Oleksiy Danilov, Secretary of the National Security and Defense Council of Ukraine, stated this during the presentation of a new module of the SOTA information and analytical system for monitoring the supply of weapons to Ukraine from partner countries. «We have our defense system, it is one of the best. We have a «top secret» circuit, there is a «secret» circuit, there is a public circuit – and it is limited. All these systems have a different, let’s say, geographical location. As for cyberattacks on our governing bodies in general, and not only the National Security and Defense Council, then of course, the russian federation is quite a powerful country in this respect. It should be acknowledged here that this is a serious enemy in this segment of the military component, because «cyber» has been a war for quite some time,» Danilov noted. The Secretary of the Security Council also reminded that the creation of cyber troops has begun in Ukraine, and the relevant decision of the National Security Council on this matter has been adopted, but the war has currently hindered the process. At the same time, Danilov assured that Ukrainian experts, together with international partners, reliably protect Ukraine’s cyberspace. ^[1]

Hackers Attacked Ukrainian Radio Stations and Spread Fake News about the Health Problems of the President of Ukraine

Today, a cyber attack was carried out on the servers and networks of TAVR Media radio stations. The radio group manages nine leading radio stations: Hit FM, Radio ROKS, KISS FM, Radio RELAX, Melodiya FM, Nashe Radio, Radio JAZZ, Classic Radio and – recently – Radio Bayraktar. Cybercriminals spread information that the President of Ukraine, Volodymyr Zelensky, is allegedly in intensive care, and his duties are performed by the Chairman of the Verkhovna Rada, Ruslan Stefanchuk. The TAVR Media company reports that the information broadcast by radio stations is not true. Currently, the relevant services are working on solving the problem. ^[2]

russia 

Russian Hackers Are Preparing to Attack the US Defense Complex

The KillNet group intends to attack the manufacturer of the American HIMARS MLRS. The Telegram channel «PP Donetsk Z» reported that the KillNet hacker group is preparing a cyber attack on Lockheed Martin Corporation, the largest manufacturer of weapons for the US and NATO. This corporation also produces HIMARS MLRS. Hackers decided to take such a step due to dissatisfaction with the fact of «pumping» Ukraine with missile systems and other lethal weapons. The group said it would launch a new type of attack, rather than a standard DDoS attack, but did not provide any specifics in order to prevent countermeasures by US cyber security agencies. ^[3]

World 

US Seizes $500,000 in Ransomware and Cryptocurrency Payments from North Korean Hackers

The US Department of Justice seized approximately $500,000 in digital payments and cryptocurrency as a result of ransomware attacks launched by North Korean hackers. Deputy Attorney General Lisa Monaco said that US authorities have begun making refunds to the affected victims. Last year, North Korean hackers attacked healthcare organizations in Kansas and Colorado by encrypting their computer systems. Later, a complaint filed by an unnamed institution in Kansas allowed the FBI to look into the matter, revealing a new type of ransomware. ^[4]

Belgium Accused China of a Cyberattack on the Systems of the Ministry of Defense and the Ministry of Internal Affairs

The Ministry of Foreign Affairs of Belgium announced a cyber attack by Chinese state hackers on the systems of the Ministry of Defense and the Ministry of Internal Affairs of the country. The attacks affected security, democracy, sovereignty and society. The Ministry emphasized that these are attacks that have a high duration and complexity, their task is to detect secret and confidential information on the device. The Ministry of Internal Affairs and the Ministry of Defense suffered such attacks. In Belgium, a cyberattack is believed to be a so-called advanced persistent threat — the threat actor, typically a state or a state-sponsored group, has unauthorized access to a computer network and can remain undetected for long periods of time. In other words, Belgium has no doubt that the Chinese government is directly behind the attack. The Chinese embassy in Belgium responded to the incident, but predictably rejected all charges, saying there was no evidence of Beijing’s involvement in the incident. ^[5]