Google sees an increase in cyber attacks in Eastern Europe
Eastern European countries are increasingly affected by cyber attacks. State hackers from Russia and China, among others, have increased the number of digital attacks in recent months. Ukraine is a common target, but Russian authorities are also increasingly being victims.
Billy Leonard of Google’s Threat Analysis Group (TAG) reports this in a blog post.
‘Continuously growing number of threat actors’
The security researchers at the search giant are closely monitoring the war in Ukraine, and cybersecurity activities in particular. The researchers published a report on the state of affairs every quarter, but sometimes more often.
Since the last report, the group has observed “a continuously growing number of threat actors”. They abuse the war for phishing and malware campaigns. They increasingly target companies and organizations in the vital sector, including telecom companies, utility suppliers and oil and gas companies.
According to Google, the attackers are state hackers from Russia, China, Iran and North Korea. They use the war to incite their victims to open emails with rogue URLs. Cybercriminals are also trying to cash in on the misery that is happening in Ukraine.
Spam and phishing campaigns
In recent months, TAG has not observed any major shifts in Eastern Europe. One of the hacker groups that was active in this region in the past quarter is APT28, also known as Fancy Bear. According to security researchers, this group has close ties with the Russian military intelligence service GRU.
The hackers spread malware through email attachments. It contains a password-protected zip