No data to display.

Weighing the threat of Russia’s cyber-warfare on the globe

By Yashasvini on Feb 26, 2022 | 03:36 AM IST

hacker.jpg


• Russia has attacked Ukrainian websites using a new “wiper” malware 

• Experts believe that the cyberattacks could spread to the West as well

Russia’s invasion of Ukraine is not just limited to military attacks, but cyberattacks, which have crippled many government websites.

On Thursday, cybersecurity firm ESET said it had discovered new “wiper” malware targeting Ukrainian organizations, which erases data from the systems it targets.

Ukrainian residents also reported that they received text messages stating ATMs in the country didn’t work, which cybersecurity experts call a scare tactic.

The spate of cyberattacks has raised concerns about a potential cyber-war between the West and Russia

Also Read: Decrypting ransomware: Weapons-grade or casual attacks?

Analysts believe that Russia could respond to the West’s sanctions with retaliatory cyberattacks. 

Wiping out data with Wiper

Wiper is malware that infects a system to erase all data making it unrecoverable. Unlike most ransomware software, Wiper has been developed with the sole purpose of destroying the infected system. 

Wiper accessed memory tools making it impossible to trace the source of the attack. Although primarily directed towards Ukraine, the newly named ‘HermeticWiper’ malware strain has also been detected in the Baltic states of Latvia and Lithuania.

Global concerns

CNBC reported that in 2017, an infamous malware known as NotPetya infected computers across the world, initially targeting Ukrainian organizations. The malware spread globally affecting major corporations such as Maersk, WPP, and Merck. 

Also Read: NSA director expects facing ransomware attacks "every single day" in five years

The attacks were blamed on Sandworm, the hacking unit of GRU, the Russian military agency. It caused damage of more than $10 billion.

Last year, many US government agencies, Florida’s water supply, and other organizations such as the Colonial PipelineJBS Meat Suppliers, and software services provider Kaseya, were attacked by ransomware software which crippled their functioning. The sectors in which they operated, were brought to a standstill. The hackers asked for ransom worth millions of dollars of cryptocurrency.

Also Read: U.S. seizes $2.3 million in bitcoin paid in the Colonial Pipeline ransom

A cybercriminal group, known as DarkSide reportedly claimed responsibility for some of the attacks including the one on Colonial Pipeline. 

The US couldn’t get any evidence to pinpoint Russia’s involvement but the origins of the group were traced back to Russia.

Meanwhile, Russia legalized cryptocurrency last Thursday and set rules for transaction limits.

Until last year, the Biden administration had hoped that the Counter-Ransomware Initiative, a new informal group of 30 countries, would bolster their diplomatic push to engage in direct talks with Russia, the NATO alliance, and Group of Seven (G7) wealthy nations. With the latest attack on Ukraine, the developments have been put on halt.

Experts believe that Russia could launch more sophisticated forms of cyberattacks, targeting Ukraine, and possibly other countries, too.

Also read: Russia-linked crypto addresses received 74% of ransomware revenue in 202

(Inputs from CNBC)

Stock View