World

Exclusive-Russian hackers seek war crimes evidence, Ukraine cyber chief says

2023.09.22 14:23


© Reuters. Yurii Shchyhol, Head of the State Service of Special Communication and Information Protection of Ukraine, speaks during an interview with Reuters, amid Russia’s attack on Ukraine, in Kyiv, Ukraine September 22, 2023. REUTERS/Ivan Lyubysh-Kirdey/File Photo

By Tom Balmforth and James Pearson

KYIV/LONDON (Reuters) – Russian spies are using hackers to target computer systems at law enforcement agencies in Ukraine in a bid to identify and obtain evidence related to alleged Russian war crimes, Ukraine’s cyber defence chief told Reuters on Friday.

The hackers, working across Russia’s foreign, domestic and military intelligence agencies, have stepped up digital intrusion campaigns targeting the Ukrainian Prosecutor General’s office and departments documenting war crimes, said Yurii Shchyhol, head of the State Service of Special Communications and Information Protection of Ukraine (SSSCIP), which handles cyber defence in the embattled country.

“There’s been a change in direction, from a focus on energy facilities towards law enforcement institutions which had previously not been targeted that often,” Shchyhol said.

“This shift, towards the courts, prosecutors and law enforcement units, shows that hackers are gathering evidence about Russian war crimes in Ukraine” with a view to following Ukraine’s investigations, he added.

The espionage activity will be flagged in an upcoming SSSCIP report, due to be published on Monday.

The report, a copy of which was reviewed by Reuters, says hackers were also trying to gather intelligence on Russian nationals arrested in Ukraine, with a view to “help these individuals avoid prosecution and move them back to Russia”.

“The groups we’ve identified as being engaged in this activity are part of Russia’s GRU and FSB intelligence agencies,” Shchyhol said.

Russia’s Foreign Ministry and the Federal Security Service (FSB) did not immediately respond to written requests from Reuters for comment. Russia’s GRU military intelligence agency could not be reached for comment.

Shchyhol declined to identify exactly which units had been targeted by the hacking campaign, citing security concerns. The number of cybersecurity incidents documented by the SSSCIP grew by 123% in the first six months of this year compared with the second half of 2022, he added.

Russian hackers have prioritised targeting government bodies and trying to gain access to their e-mail servers, Shchyhol said, without elaborating. Reuters was unable to independently verify any of the hacks detailed by Shchyhol and the report.

On Tuesday the Netherlands-based International Criminal Court (ICC), said it had detected “unusual activity” on its computer network at the end of last week. It was still not clear on Friday who was behind the hack.

The court made headlines in March when it issued an arrest warrant for Russian President Vladimir Putin on suspicion of illegally deporting children from Ukraine. The Kremlin rejects the accusations and the court’s jurisdiction.

HYBRID WAR

Ahead of Russia’s invasion of Ukraine in February 2022, Western intelligence agencies warned of potential cyberattacks which could spread elsewhere and cause “spillover” damage on global computer networks.

While there has been little evidence of spillover to date, hacks have been regularly leveraged by Russia alongside its military operations.

An attempt by a Russian intelligence hacking group dubbed “Sandworm” to launch a destructive cyberattack against Ukraine’s electricity grid was thwarted in April, 2022.

Shchyhol said his department saw evidence that Russian hackers were accessing private security cameras within Ukraine to monitor the outcome of long-range missile and drone strikes.

“We have documented several attempts to gain access to video cameras near the facilities they attacked, and to systems that provide information about the stability of the energy network,” he said.

Russia attacked Ukrainian energy infrastructure with a winter air campaign last year that caused sweeping power cuts for millions of people. Shchyhol said energy infrastructure was also targeted with cyber attacks and that he expected those attacks to happen again this winter.

“You need to understand that the cyber war will not end even after Ukraine wins on the battlefield,” Shchyhol said.

Source link

Related Articles

Back to top button
bitcoin
Bitcoin (BTC) $ 94,173.23 1.61%
ethereum
Ethereum (ETH) $ 3,327.40 0.20%
tether
Tether (USDT) $ 0.998416 0.06%
xrp
XRP (XRP) $ 2.14 0.65%
bnb
BNB (BNB) $ 690.23 0.14%
solana
Solana (SOL) $ 183.65 2.56%
dogecoin
Dogecoin (DOGE) $ 0.311027 0.62%
usd-coin
USDC (USDC) $ 0.99987 0.05%
staked-ether
Lido Staked Ether (STETH) $ 3,327.77 0.01%
cardano
Cardano (ADA) $ 0.87435 1.32%
tron
TRON (TRX) $ 0.25869 2.08%
avalanche-2
Avalanche (AVAX) $ 36.47 2.37%
the-open-network
Toncoin (TON) $ 5.72 0.47%
wrapped-steth
Wrapped stETH (WSTETH) $ 3,947.13 0.46%
chainlink
Chainlink (LINK) $ 21.52 5.07%
shiba-inu
Shiba Inu (SHIB) $ 0.000022 0.45%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 94,293.26 1.33%
sui
Sui (SUI) $ 4.08 2.84%
bitget-token
Bitget Token (BGB) $ 8.13 11.37%
stellar
Stellar (XLM) $ 0.349027 1.51%
hedera-hashgraph
Hedera (HBAR) $ 0.275892 3.47%
polkadot
Polkadot (DOT) $ 6.89 0.54%
weth
WETH (WETH) $ 3,329.23 0.03%
hyperliquid
Hyperliquid (HYPE) $ 27.09 0.05%
bitcoin-cash
Bitcoin Cash (BCH) $ 439.86 0.48%
leo-token
LEO Token (LEO) $ 9.20 0.65%
uniswap
Uniswap (UNI) $ 13.30 0.39%
litecoin
Litecoin (LTC) $ 100.37 1.74%
pepe
Pepe (PEPE) $ 0.000018 2.22%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,509.33 0.07%
near
NEAR Protocol (NEAR) $ 5.11 0.44%
ethena-usde
Ethena USDe (USDE) $ 0.997674 0.05%
usds
USDS (USDS) $ 1.00 0.13%
internet-computer
Internet Computer (ICP) $ 10.21 0.76%
aave
Aave (AAVE) $ 323.26 4.41%
aptos
Aptos (APT) $ 8.71 1.42%
crypto-com-chain
Cronos (CRO) $ 0.148221 2.15%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.478497 0.34%
mantle
Mantle (MNT) $ 1.19 1.16%
ethereum-classic
Ethereum Classic (ETC) $ 25.93 0.05%
vechain
VeChain (VET) $ 0.045664 2.55%
render-token
Render (RENDER) $ 6.99 1.67%
monero
Monero (XMR) $ 192.68 1.89%
virtual-protocol
Virtuals Protocol (VIRTUAL) $ 3.55 17.86%
whitebit
WhiteBIT Coin (WBT) $ 24.60 0.07%
mantra-dao
MANTRA (OM) $ 3.67 0.41%
bittensor
Bittensor (TAO) $ 467.28 1.29%
dai
Dai (DAI) $ 0.999486 0.09%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.31 3.64%
arbitrum
Arbitrum (ARB) $ 0.758692 0.58%