Cyberattacks in Ukraine: Key Insights
Most cyberattacks in Ukraine remain unnoticed, with only about 20% becoming public knowledge.
This information was shared by the founder of AmonSul and co-founder of the largest Ukrainian cybersecurity community, Serhiy Kharyuk, in an interview with EP.
"In my assessment, for every incident that is publicly discussed, there are at least four that are kept silent. This is particularly true for the private sector," he stated.
Kharyuk provided an example of a bot that collects personal data, which revealed that some information was allegedly "leaked" from a pharmacy network. Although there was no official confirmation of the breach, the mere appearance of such data indicates a likely hack.
Regarding whether the government should publicly announce cyber incidents, Kharyuk emphasized that the situation is ambiguous, especially during wartime. If it concerns the Defense Forces, public disclosure may be undesirable. However, in the civil sector, transparency allows other organizations to learn from others' mistakes.
"For instance, Kyivstar acknowledged that they were hacked, but real collaboration only began after the breach of UZ. At that point, the operator's specialists came to assist with recovery. But this is already like help after someone has broken a leg," he added.
For more about who is behind the largest cyberattacks and how Russian hackers operate, read the interview: "Who is winning in the Russian-Ukrainian cyberwar and are elections possible in "Diia"? An interview with a "white hat hacker"
