The 3th of May, Cyber News
Foto — inbusiness.kz
UKRAINE
Russian hackers continue to threaten Zaporizhia and Volyn media
Two Zaporizhzhya sites, infоrm.zp.ua and 061.ua, have started receiving threats from the hacker group Noname057. Letters came from postcards inbox.ru and list.ru. In the letters, the attackers threaten to hack media sites. According to Eric Brynza, editor-in-chief of infоrm.zp.ua, the threatening letter arrived on the editorial box on April 28. The subject of the letter stated: «Important data». We are the hacker group NoName057 (16), we warn you and all other employees of your «media»: until you stop the wave of fakes about the russian Federation, we will continue to put your site. You will have to answer for all your crimes. Think before it’s too late,» the letter said. The reactionary mail 061.ua received a letter from Cheslava Solovei on April 30. The content of the letter was even shorter: «We didn’t understand it the first time – let’s say it again. We will continue to demolish your sites if you do not stop the pipeline of fakes about russia». Volyn media continue to receive threats from the hacker group Noname057. Letters from them were received on April 30 by Volyn Online, Racurs.ua, and Konkurent news agency. The letters were sent from the postcard list.ru in russian with the following content: «We didn’t understand the first time – let’s say again. We will continue to demolish your sites if you do not stop the pipeline of fakes about russia». Andriy Luchyk, editor of the Konkurent news agency’s website, told an IMI representative that a DDoS attack had been carried out on the site on the evening of May 1. The attack on the site was quickly repulsed. The editor of Volyn Online website, Maryana Metelska, said that there had been no DDoS attacks on the site yet. The site works normally. Source [1]
russian hackers are attacking information systems across the country, because russia’s goal is to conquer all of Ukraine, not just its East
russia’s goal is to conquer all of Ukraine, not just its East. That is why it attacks and will continue to attack not only regional services and local authorities, but also government agencies and companies that provide services at the national level.
«In cyberspace, we see that russian hackers are carrying out cyber attacks on both local and national resources. Sometimes these cyberattacks are coordinated with attacks on the ground. An example is the attacks on telecom operators in certain regions. Sometimes there is no connection between hostilities and cyberattacks,» said Viktor Zhora, deputy head of the State Service of Special Communication. Source [2], [3]
russia
Hackers have hacked Qiwi — russia’s most popular electronic payment system
NB65 hackers linked to Anonymous said they had gained access to information and deleted 10.5 terabytes of the company’s backups. They explained their choice of victim by the fact that Qiwi is the most popular payment system in russia. Qiwi denies intrusion, explaining the problem with high service congestion, and hackers continue to present evidence of hacking. Source [4], [5], [6], [7], [8]
The digital iron curtain in russia is falling lower and lower
From 2025, many russian organizations will stop purchasing software from unfriendly countries. That is, of all Western. This is stated in a new decree of russian dictator Vladimir Putin. «On additional information security measures». The ban on the use of foreign software applies to government organizations, strategic enterprises and critical infrastructure. Control over the implementation of the decree is supposed to be entrusted to the responsible persons in these organizations. In addition, this legal act provides for unimpeded access of the FSB to the information resources used by the company. According to putin’s decree, this will allow for effective monitoring of the company’s activities on the Internet. According to the document, russia will also create regulations to respond to cyber threats. Within a month, the authorized persons must determine the timing and mechanism of combating hacker attacks, as well as establish information security centers. Source [9], [10]
Attacks of the IT ARMY of Ukraine
On May 2, an attack was launched on EGAIS, the only state-owned automated information system for tracking the turnover of alcohol and alcohol-containing products, which allows it to control its production, movement and detect counterfeits. Judging by the services of checking the availability of sites and user comments, the attack is successful. Source [11], [12]
WORLD
Hackers from North Korea flash smartphones to get rid of government surveillance and gain access to banned content
An active group of North Korean hackers is trying to challenge the world’s most closed digital regime by helping citizens hack smartphones so they can read foreign media and install banned programs. For most people on the planet, the practice of routing or «hacking» a smartphone allows you to install programs or software settings that violate the limitations of Apple or Google operating systems. However, for North Koreans, this is an opportunity to get out from under the ubiquitous control cap that seeks to cover every area of human life. Source [13], [14]
russian hackers attacked the websites of Moldova government agencies
The websites of several Moldova government agencies have been subjected to cyber attacks, the organization of which is attributed to the russian group Killnet. This was reported by the Information and Security Service (ISS) of Moldova: «The cyberattack is attributed to the russian group Killnet, which operates on the principles of hacktivism and specializes in DDoS attacks on countries that they believe support Ukraine. The group has carried out such attacks on government sites in the EU and NATO web infrastructure, and in recent days sites of state organizations in Romania were attacked». The service noted that the responsible authorities are now taking the necessary measures to repel attacks on state infrastructure and minimize their consequences.
Attack on Moldovan sites — a wake-up call. russia’s war against Ukraine has clearly shown that cyberattacks are another front of the theater of operations. Source [15], [16], [17], [18]
Hacking of Nauru police
An unknown source received 285,635 discrediting emails (82 GB) from Nauru police over Australia’s immigration policy, particularly on the island. «In September 2021, Australia signed an agreement to indefinitely keep the Nauru regional processing center open and continue its policy of mandatory immigration detention. [A] And so we decided to hack the Nauru Police Force, who were tasked by the Australian government with policing the island and obtained 285,635 confidential emails related to abuses that they tried to cover up, and we are making them all public. The Republic of Nauru has previously disputed reports of torture, sexual assault and child abuse on the island. [B] Can they still dispute this when all their emails are out in the open? The things we saw and read made us sick», — hackers left a message. Source [19]