fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Ukraine Says its ‘IT Army’ has Taken Down Key Russian Sites

Ukraine Says its ‘IT Army’ has Taken Down Key Russian Sites

Key Russian websites and state online portals have been taken offline by attacks claimed by the Ukrainian cyber police force, which now openly engages in cyber-warfare.

As the announcement of the law enforcement agency’s site details, specialists from the force have teamed with volunteers to attack the web resources of Russia and Belarus.

The three countries are currently involved in an ongoing and large-scale armed forces conflict that includes a cyber frontline, which manifested even before the invasion.

Also Read: Exploring MAS’ framework for equitable sharing of scam losses

On Saturday, Ukraine’s officials decided to form a special “IT Army” consisting of cyber-operatives and volunteer hackers from around the globe.

Using whatever available firepower can be recruited into the IT Army, volunteers are launching attacks against Russian and Belarusian websites and coordinating massive data exposure operations against high-ranking officials and opinion-makers in the enemy ground.

Coordinating information disclosure operations
Coordinating information disclosure operations (Telegram)

The Ukrainian cyber police have announced having targeted the websites of the Investigative Committee of the Russian Federation, the FSB (Federal Security Service), and the Sberbank, Russia’s state-owned bank.

As a result of these attacks, the following sites have been taken offline:

  • sberbank.ru
  • vsrf.ru
  • scrf.gov.ru
  • kremlin.ru
  • radiobelarus.by
  • rec.gov.by
  • sb.by
  • belarus.by
  • belta.by
  • tvr.by

Bleeping Computer confirms that the above websites are beyond reach at the time of this writing.

In addition to these sites, the IT Army’s Telegram channel has listed the following sites as downed following successful cyberattacks.

Also Read: Protecting your business against cyberattacks: a practical guide

Websites downed by IT Army's operation
Websites downed by IT Army’s operation (Telegram)

Today, the Ukrainian cyber police have announced a new information-collection system where people can submit known vulnerabilities on Russian networks, share access to critical systems, etc.

While Ukraine is trying to coordinate attacks against Russian interests, hacking groups conduct their own campaigns.

For example, a Belarusian hacking group known as ‘Cyber Partisans’ claimed to have disrupted trains in Belarus to help slow down the transport of Russian troops.

Another hacking group known as ‘AgainstTheWest‘ also targets Russian interests, claiming to have hacked a steady stream of Russian websites and corporations.

Russia blocking channels of information

On the other side, Russia and its internet watchdog, Roskomnadzor, have been trying to control what information is available to its netizens by imposing numerous blocks on foreign sites.

At the same time, the agency is objecting to restrictions imposed on state-owned and state-supported channels like RBC, Zvezda, and Sputnik, by YouTube, Google, Facebook, and other foreign platforms.

Roskomsvoboda, a Russian public organization devoted to digital rights protection and freedom of speech, reports multiple blocks of portals that report battle outcomes and casualties on Ukrainian ground.

Sites that were urgently blocklisted in Russia
Sites that were urgently blocklisted in Russia (Roskomsvoboda)

Cyberattacks against Ukraine

While many hackers are targeting Russia, Ukraine has not been free of cyberattacks while they fend off the invasion by the Russian military.

Over the past week, the country has suffered significant blows on the cyber-frontline, with even warnings from notorious ransomware gangs.

The most recent operations targeting Ukraine include the following:

  • Belarusian phishing campaigns targeting Ukraine’s military personnel.
  • Data wiper malware (HermericWiper) was deployed on Ukrainian networks to wreak havoc.
  • DDoS attacks against vital Ukrainian entities attributed to the GRU (Russian special cyber-force).

As the conflict continues, we will likely see cyberattacks escalate outside of Ukraine to other countries.

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) warns that all U.S. organizations should secure their defenses and prepare for increased cyberattacks.

“While there are no specific or credible cyber threats to the U.S. homeland at this time, Russia’s unprovoked attack on Ukraine, which has involved cyber-attacks on Ukrainian government and critical infrastructure organizations, may impact organizations both within and beyond the region, particularly in the wake of sanctions imposed by the United States and our Allies,” reads a warning by CISA. 

“Every organization—large and small—must be prepared to respond to disruptive cyber activity.”

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us