Russia was behind cyberattacks in preparations for war in Ukraine, findings reveal


U.S. and Ukrainian officials have long believed Russia was responsible for the cyberattacks on Viasat, but they did not officially “acquaint” Russia with the incident. Although US officials concluded long ago, they wanted European countries to take the lead because the attack had significant repercussions in Europe but not the United States.

A statement released on Tuesday did little to name a specific Russian-backed hacking group to organize the attack. This was an unusual omission, in part because the United States routinely disclosed information about certain intelligence services responsible for attacks, in order to show visibility into the Russian government. .

“We have been and will continue to work closely with relevant law enforcement and government authorities as part of our ongoing investigation,” said Dan Bleier, Viasat spokesperson. Mandiant, a cybersecurity firm that Viasat hired to investigate the matter, declined to comment on the findings.

However, researchers at cybersecurity companies sentinel one It was believed that the Viasat hack was most likely the work of the Russian military intelligence unit, the GRU. The malware used in the attack known as AcidRain shared significant similarities with other malware previously used by GRU. sentinel one the researchers said.

The researchers say that unlike previous malware known as VPNFilter and built to destroy specific computer systems, AcidRain is built to be a versatile tool that can be easily used against a variety of targets. In 2018, the Ministry of Justice and the Federal Bureau of Investigation VPNFilter malware.

Juan Andres Guerrero-Saade, Principal Threat Researcher at SentinelOne, said the AcidRain malware is “a very common solution in the most terrifying sense.” “They can take this tomorrow, and AcidRain will work if they want to launch a supply chain attack on a router or modem in the US.”

U.S. officials have warned that Russia could conduct a cyberattack on critical U.S. infrastructure and urged businesses to step up their online defenses. The US State Department also said it helped Ukraine detect and respond to Russian cyberattacks.

Leave a Comment