[TheRecord] Hackers deface Ukrainian government websites

Hackers have defaced multiple websites belonging to the Ukrainian government after talks between Ukrainian, US, and Russian officials hit a dead end on Thursday.

The attack took place on the night between January 13 and January 14 and impacted the websites of the Ukrainian Ministry of Foreign Affairs, Ministry of Education and Science, Ministry of Defense, the State Emergency Service, the website for the Cabinet of Ministers, and others.

All websites were wiped, and their content was replaced with the same statement published in Russian, Ukrainian, and Polish (image at the top of this article, a rough translation below, archived copy here).

Ukrainian! All your personal data has been sent to a public network. All data on your computer is destroyed and cannot be recovered. All information about you stab (public, fairy tale and wait for the worst. It is for you for your past, the future and the future. For Volhynia, OUN UPA, Galicia, Poland and historical areas.

Ukrainian officials have confirmed the attack in messages posted on Facebook and Twitter, and all affected websites were taken down. Some are still down, under maintenance messages, while some have been restored.

Officials say they are investigating the attacks, but all signs post to an attack carried out by Russian hackers.

Cybersecurity journalist Kim Zetter said today that sources in the Ukrainian government told her that the attack leveraged a vulnerability in the October CMS, shared among all the defaced websites, although officials have yet to confirm any of the technical details from the attack.

Sources tell me ~15 sites in Ukraine – all using October content management system – have been defaced, incl Min of Foreign Affairs, Cabinet of Ministers, Min of Ed, Emergency Services, Treasury, Environmental Protection. Attackers apparently used this: https://t.co/7ojWbjZWDd pic.twitter.com/FaepCsRO5E

— Kim Zetter (@KimZetter) January 14, 2022

The post Hackers deface Ukrainian government websites appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

Daily NCSC-FI news followup 2020-05-26

New Zealand introduces Bill to block violent extremist content www.zdnet.com/article/new-zealand-introduces-bill-to-block-violent-extremist-content/ It would make livestreaming of objectionable content a criminal offence, censorship calls will be made immediately, and take-down notices will be backed by law. YK: kyberiskuissa roimaa kasvua supervalta boikotoi kokousta www.tivi.fi/uutiset/tv/b9faeb00-ec81-42a1-ba54-18f88164034f YK varoitti perjantaina kyberrikosten olevan kasvussa koronapandemian aikana. YK:n epävirallisessa turvallisuusneuvoston kokouksessa perjantaina […]

Read More

[ZDNet] Australians are losing over AU$6.6 million each month to cryptoscams

All posts, ZDNet

ACCC Scamwatch received over 3,000 reports totalling AU$53.2 million from the start of the year until the end of August. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ESET] Week in security with Tony Anscombe

All posts, ESET feed

Governments as cyber-targets – FBI and Have I Been Pwned team up to notify Emotet victims – Mac users urged to plug a serious security hole The post Week in security with Tony Anscombe appeared first on WeLiveSecurity Source: Read More (WeLiveSecurity)

Read More