Particle.news
Download on the App Store
11 ARTICLES
·
15h ago

Western Nations Expose Russian Cyber Campaign Targeting Ukraine Aid Logistics

Eleven countries jointly revealed a two-year Russian GRU hacking operation aimed at disrupting aid to Ukraine through attacks on defense, transport, and IT sectors.

A computer keyboard lit by a displayed cyber code is seen in this illustration picture taken on March 1, 2017. REUTERS/Kacper Pempel/Illustration/File Photo
Image
Hackers broke into thousands of cameras to gain real-time visibility of transport routes in and out of Ukraine
Image

Overview

  • Russia's GRU Unit 26165, also known as Fancy Bear, has conducted a sustained cyber-espionage campaign since 2022 targeting entities aiding Ukraine's war effort.
  • The campaign focused on logistics and critical infrastructure, including defense firms, IT services, maritime operations, airports, and air traffic systems across NATO countries.
  • Hackers employed tactics such as credential guessing, spear-phishing, exploiting Microsoft Exchange vulnerabilities, and accessing 10,000 internet-connected cameras to monitor aid movements.
  • A joint advisory from the UK, US, Germany, and eight other nations attributes the campaign to Russia and urges organizations to strengthen cybersecurity defenses.
  • Paul Chichester of the UK’s National Cyber Security Centre emphasized the significant risk posed by the campaign and called for immediate action to mitigate vulnerabilities.