DDoS attacks disrupt several Ukrainian government sites; ESET researchers discover new data wiper malware installed on hundreds of Ukrainian machines
here's what you need to know NetBlocks : Internet disruptions registered as Russia moves in on UkraineAndy Greenberg / Wired : Russia's Sandworm Hackers Have Built a Botnet of Firewalls Yadullah Abidi / Candid.Technology : Ukraine attacked by data wiping malware as Russian troops breach border Fossbytes : Meta AI Will Make Virtual Worlds, Universal Translator & AI Assistants Samuel Mbaki Wanjiku / crypto.news : Russia Cut Off From International Finance, Raising a Debate on Decentralization Tweets: Ken Dilanian / @kendilaniannbc : Scoop: Biden has been presented with options for massive, unprecedented cyberattacks against Russia https://t.co/nxj5NCjpD3 with @ckubeNBC @esetresearch : Breaking. #ESETResearch discovered a new data wiper malware used in Ukraine today. ESET telemetry shows that it was installed on hundreds of machines in the country. This follows the DDoS attacks against several Ukrainian websites earlier today 1/n @threatintel : New #wiper malware being used in attacks on #Ukraine 1bc44eef75779e3ca1eefb8ff5a64807dbc942b 1e4a2672d77b9f6928d292591 @netblocks : ⚠️ Confirmed: #Ukraine's Ministry of Foreign Affairs, Ministry of Defense, Ministry of Internal Affairs, the Security Service of Ukraine and Cabinet of Ministers websites have just been impacted by network disruptions; the incident appears consistent with recent DDOS attacks 📉 https://t.co/EVyy7mzZRr Kevin Collier / @kevincollier : Countries abstain from using their nukes because everyone knows that an escalation quickly means we all lose. We've never seen cyber superpowers taking turns destructively hacking each other's infrastructure. Wholly uncharted waters. https://twitter.com/... Bill Kristol / @billkristol : It's understandable we'd be cautious about escalatory implications of broad cyberattacks inside of Russia. On the other hand, targeted cyber counter-attacks against Russian forces launching offensives within Ukraine might well be reasonable. And helpful. https://www.nbcnews.com/... Dustin Volz / @dnvolz : A new strain of wiper malware has been detected in Ukraine and, notably, Latvia. Western officials have warned for months about the possibility that Russian cyber aggression in Ukraine could have spillover effects in the region or globally. https://www.wsj.com/... J. A. Guerrero-Saade / @juanandres_gs : Looking into new #wiper malware in #Ukraine- #EarlyTriage https://twitter.com/... Catalin Cimpanu / @campuscodi : Symantec has published a report on this malware last night. They updated the report earlier today to add that in some cases some fake ransom note was shown in an attempt to pass some of the attacks as ransomware. https://symantec-enterprise- blogs.security.com/... https://twitter.com/... @netblocks : ⚠️ Update: #Ukraine's Center for Strategic Communications has issued a statement on today's DDOS attack: ➡️ Began at 16:00 local time ➡️ Traffic switched to another provider to lower impact ➡️ CERT-UA warns of further possible cyberattacks ➡️ Previous attack traced to Russia https://twitter.com/... Dustin Volz / @dnvolz : Update: Symantec now says they have seen targets of the new wiper attack in Ukraine, Latvia AND Lithuania. Targets include finance and government contractors, Symantec says. https://twitter.com/... Gavin Sheridan / @gavinsblog : And this is where things get very very dangerous. Any attack on a NATO member (even cyber) is potentially catastrophic. Cascading decisions could lead us in an extremely perilous direction. https://twitter.com/... @netblocks : @MarksLarks @accessnow The telecoms connectivity situation in #Ukraine is deteriorating amid military operations by Russia. We're tracking the situation and urge combatants not to target civilian infrastructure. https://netblocks.org/... @avastthreatlabs : On top of the #HermeticWiper (https://twitter.com/...) there is also a new golang-based ransomware roaming in #Ukraine waters. https://www.virustotal.com/... https://twitter.com/... @netblocks : ⚠️ Update: PrivatBank, the largest commercial bank in #Ukraine and Oschadbank, the State Savings Bank of Ukraine, have again also been knocked out along with the defence and ministerial websites. 📰 Previously: https://netblocks.org/... https://twitter.com/... https://twitter.com/... @eastdakota : So far the Ukrainian Internet continues to function. Seeing a 50% increase in traffic, day-over-day, likely as people are scouring the news online as they wake up. Chantal Spurgeon / @gothicbfly : This is the kind of thing that worries me! It wasn't too long ago that the US experienced cyberattacks that were linked to Russia. What if those were mere test runs? The next WW will have a major cyber component...this is certain! https://www.cnbc.com/... @merket : The new weapons of war... https://twitter.com/... @netblocks : ⚠️ Confirmed: Amid reports of a power outage and increased military activity in Donetsk, #Ukraine, real-time network data show an observable disruption to internet connectivity 📉 https://twitter.com/... Nicole Perlroth / @nicoleperlroth : ESET reporting new wiper malware (malware that deletes data) on “hundreds of machines” in Ukraine. This is on top of the DDoS attacks already underway against Ukraine gov. ministries and banks. And texts to troops: “There is still time to save your life and leave the JFO zone.” https://twitter.com/... Anastasiia Lapatina / @lapatina_ : Important - more cyberattacks may be underway👇🏼 https://twitter.com/... Nigel Baker / @nigelmbaker1 : Fantastic work by @ESETresearch . Attribution and identifying new malware is hard. This is first class analysis and telemetry. https://twitter.com/... Martin Sfp Bryant / @martinsfp : The 21st century has already seen too many wars, but this feels like it's set to be the first truly ‘21st century war’. https://twitter.com/... Catalin Cimpanu / @campuscodi : IOCs and ongoing analysis in the Twitter threads below: https://twitter.com/... https://twitter.com/... https://twitter.com/... https://twitter.com/...
Breaking. #ESETResearch discovered a new data wiper malware used in Ukraine today. ESET telemetry shows that it was installed on hundreds of machines in the country. This follows the DDoS attacks against several Ukrainian websites earlier today 1/n
⚠️ Confirmed: #Ukraine's Ministry of Foreign Affairs, Ministry of Defense, Ministry of Internal Affairs, the Security Service of Ukraine and Cabinet of Ministers websites have just been impacted by network disruptions; the incident appears consistent with recent DDOS attacks 📉 ht…
Countries abstain from using their nukes because everyone knows that an escalation quickly means we all lose. We've never seen cyber superpowers taking turns destructively hacking each other's infrastructure. Wholly uncharted waters. https://twitter.com/...
It's understandable we'd be cautious about escalatory implications of broad cyberattacks inside of Russia. On the other hand, targeted cyber counter-attacks against Russian forces launching offensives within Ukraine might well be reasonable. And helpful. https://www.nbcnews.com/.…
A new strain of wiper malware has been detected in Ukraine and, notably, Latvia. Western officials have warned for months about the possibility that Russian cyber aggression in Ukraine could have spillover effects in the region or globally. https://www.wsj.com/...
Symantec has published a report on this malware last night. They updated the report earlier today to add that in some cases some fake ransom note was shown in an attempt to pass some of the attacks as ransomware. https://symantec-enterprise- blogs.security.com/... https://twitter…
⚠️ Update: #Ukraine's Center for Strategic Communications has issued a statement on today's DDOS attack: ➡️ Began at 16:00 local time ➡️ Traffic switched to another provider to lower impact ➡️ CERT-UA warns of further possible cyberattacks ➡️ Previous attack traced to Russia http…
Update: Symantec now says they have seen targets of the new wiper attack in Ukraine, Latvia AND Lithuania. Targets include finance and government contractors, Symantec says. https://twitter.com/...
And this is where things get very very dangerous. Any attack on a NATO member (even cyber) is potentially catastrophic. Cascading decisions could lead us in an extremely perilous direction. https://twitter.com/...
On top of the #HermeticWiper (https://twitter.com/...) there is also a new golang-based ransomware roaming in #Ukraine waters. https://www.virustotal.com/... https://twitter.com/...
@MarksLarks @accessnow The telecoms connectivity situation in #Ukraine is deteriorating amid military operations by Russia. We're tracking the situation and urge combatants not to target civilian infrastructure. https://netblocks.org/...
⚠️ Update: PrivatBank, the largest commercial bank in #Ukraine and Oschadbank, the State Savings Bank of Ukraine, have again also been knocked out along with the defence and ministerial websites. 📰 Previously: https://netblocks.org/... https://twitter.com/... https://twitter.com…
So far the Ukrainian Internet continues to function. Seeing a 50% increase in traffic, day-over-day, likely as people are scouring the news online as they wake up.
This is the kind of thing that worries me! It wasn't too long ago that the US experienced cyberattacks that were linked to Russia. What if those were mere test runs? The next WW will have a major cyber component...this is certain! https://www.cnbc.com/...
⚠️ Confirmed: Amid reports of a power outage and increased military activity in Donetsk, #Ukraine, real-time network data show an observable disruption to internet connectivity 📉 https://twitter.com/...
ESET reporting new wiper malware (malware that deletes data) on “hundreds of machines” in Ukraine. This is on top of the DDoS attacks already underway against Ukraine gov. ministries and banks. And texts to troops: “There is still time to save your life and leave the JFO zone.” h…
IOCs and ongoing analysis in the Twitter threads below: https://twitter.com/... https://twitter.com/... https://twitter.com/... https://twitter.com/...