Cyberattacks were disclosed by some Ukrainian state-owned critical infrastructure entities, including oil and gas firm Naftogaz, transport safety agency DSBT, national postal service provider Ukrposhta, and state railway Ukrzaliznytsia, according to The Record, a news site by cybersecurity firm Recorded Future.
Naftogaz confirmed that it had its data center targeted in the attack, resulting in the disruption of its call centers and website. Similar data center compromise was reported by DSBT, which noted that the intrusion has impacted its Shlyah system and website.
On the other hand, Ukrposhta noted that its services were halted due to the hack of its partners' information infrastructure although payment processing services have since been recovered, while Ukrzaliznytsia said that online ticket purchases have been affected by an attack on some of its systems. Only the intrusion against DSBT has been claimed by Russian hacking group National Cyber Army.
Such attacks come after major Ukrainian bank Monobank confirmed being targeted by its largest distributed denial-of-service attack yet over the past weekend.
Ukraine has been targeted by Russian threat actors in the new Operation Texontodisinformation campaign that also involved spear-phishing and credential exfiltration tactics, according to The Hacker News.
Record high ransomware and data extortion incidents experienced by Western nations last year have prompted former National Security Agency Director Michael Rogers to call for a reevaluation of their cybersecurity defense strategy.