July 3, 2017 by

Ukraine’s Security Service Blames Russia for Petya Cyberattack

Ukraine’s security service has claimed it has obtained proof that its Russian counterpart was involved in the cyber-attack.

On Saturday, Ukraine’s state security service (SBU) claimed that Russian security forces were involved in the ‘Petya’ ransomware outbreak, further alleging that the cyberattack was designed to destroy rather than secure ransom payments.

The ransom demands, the SBU claimed, was a cover for the attack which started in Ukraine before propagating around the world last week. The SBU also added that the cyberattack was spurred by the same hackers who infamously targeted Ukraine’s power grid late last year. That December attack also saw the country’s transport and financial systems targeted. The cyberattack led to an outage that saw parts of Kiev, Ukraine’s capital, experience power blackouts.

Notably, the attack followed another high-profile power outage in December 2015 which left 225,000 people in the dark in Ukraine. The US Department of Homeland Security blamed the outage on hackers in what is widely seen as the first-known successful cyber intrusion to take down a power grid.

The SBU combed through data obtained from security firms and antivirus companies around the world to establish a connection with a previously recorded attack involving the Petya virus.

The SBU said:

The available data, including those obtained in cooperation with international antivirus companies, gives us reason to believe that the same hacking groups are involved in the attacks, which in December 2016 attacked the financial system, transport and energy facilities of Ukraine using TeleBots and BlackEnergy. This testifies to the involvement of the special services of Russian Federation in this attack.

The most recent cyberattack has had a significant impact on Ukrainian businesses. The country’s police claimed they received about 1,000 messages from cyberattack victims in a 24-hour period following last week’s cyberattack. A total of 150 companies have gone the measure to file official complaints with the police.

Image credit: Wikimedia.

About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

TrickBot influenced by WannaCry and Petya, adds a self-spreading Worm Module

Security researchers have discovered that the latest version of Trickbot has been using the Windows...

Read more arrow_forward

Petya Ransomware Hits the United States

Petya, the sweeping ransomware cyberattack that struck companies and government offices across...

Read more arrow_forward

Petya Ransomware Outbreak is Wrecking Havoc Across the World

A new ransomware strain similar to WannaCry has been spreading across Europe today, hitting a number...

Read more arrow_forward