The Russian hackers infect the computers of Ukrainian companies with a malware that ensures an unsanctioned access to them (“back doors”) for a large-scale coordinated attack, Chief of Cyberpolice of Ukraine Sergei Demediuk said during interview with Reuters.
According to him, the hackers target the companies, banks and energetic infrastructure through activation of the malware.
Thus, from the beginning of the year, the police finds the viruses in phishing emails, sent from the domains of public institutions, the systems of which were hacked into, and the counterfeit websites, imitating the real website of public authorities.
Demediuk informed that attempting to avoid detection, the hackers implement the malware in the network of companies, breaking it up to separate files.
“The analysis of already detected malware and the focus of the attack on Ukraine evidence that all of that is being prepared for a certain day”, he said.
Previously, some attacks coincided with the large Ukrainian holidays. According to Demediuk, the next attack can happen on Thursday, the Constitution Day, or in August, the Independence Day.
“Everything we see, everything we intercepted during this period: 99% of traces are leading to Russia”, Demediuk added.
He added that the Ukrainian police works with foreign representatives for detecting hackers.
Demydiuk emphasized that the scale of current campaign is the same as NotPetya virus, because of which Ukrainian public institutions suffered last year.