Ukraine has been hit by another major cyberattack. In March, hackers targeted government agencies and key services in three serious incidents. They used a new type of harmful software called “Wrecksteel.” Ukraine’s cyber emergency team, CERT-UA, found the malware.
A New Cyberattack Targets Ukraine
The report says hackers tricked people into installing the malware with fake emails. These phishing emails came from hacked accounts that looked real. The messages had links to file-sharing sites like DropMeFiles and Google Drive. Clicking the links ran a hidden script on the victim’s computer. The malware then stole documents, images, and presentations. Even worse, it took screenshots, letting hackers see everything on the screen.
How the Attack Happened
The hackers behind this attack are known as UAC-0219. Experts say they have been active since fall 2024. One of their trickiest attacks used fake emails. The emails looked like they came from a Ukrainian government agency. They falsely claimed some employees’ salaries would be cut. Inside was a link promising a list of those affected. But the link did not lead to real information. Instead, it installed the Wrecksteel malware.
CERT-UA has not officially named any country as the attacker. However, Russian hacking groups have been linked to most phishing-based cyberattacks targeting Ukraine in the past.
How Cyber Attacks on Industrial Control Systems Can Endanger Lives ?
Other Recent Cyberattacks on Ukraine
This was not the only recent cyberattack on Ukraine. Earlier this week, experts from Cisco Talos found another threat. A Russian-backed hacking group called Gamaredon was behind it. They ran a spying operation using fake files. The files claimed to show military troop movements. But when opened, they installed harmful software to steal sensitive information.
Last week, hackers attacked Ukraine’s railway system, Ukrzaliznytsia. They used special malware to disrupt online services. This was a serious attack. Ukrzaliznytsia is a key transportation network, serving millions. Ukrainian cyber officials called it an act of terrorism. They say it took a lot of planning and resources. They suspect Russia was involved but have not identified the hacker group.
These recent attacks highlight the growing cyber threats Ukraine continues to face. With advanced hacking techniques and new malware like Wrecksteel, cybercriminals are finding more ways to spy, steal, and disrupt the country’s key systems. Ukraine’s cybersecurity teams are now working around the clock to detect and prevent further attacks, but the danger remains high.