Since Russia invaded Ukraine with tanks, the country has been increasingly targeted by Russian state hackers. There are also more and more cyber attacks on the vital sector. Not only in Ukraine, but also outside. This is unacceptable and may cause the situation to escalate further. So writes the European Commission in a press statement.
It has been almost five months since the first Russian tanks invaded Ukraine. Since then, a war has been raging not only on the ground: there is also plenty of fighting in cyberspace. According to the Ukrainian cybersecurity agency SSSCIP, 796 cyber attacks have been launched against the country since the war began. The public sector, defense apparatus, financial institutions, commercial organizations and energy suppliers are the main targets.
Not only Ukraine is a favorite target for Russian hackers. NATO countries are also under attack. Calculations by Microsoft show that 128 organizations in 42 countries have been targeted by hackers since last February. The US is the main target of the hackers, but Poland has also been frequently hit by digital attacks. In fact, humanitarian and military aid is provided to Ukraine from that country.
The European Commission responds to the many cyber attacks on EU member states. Through a press release, the EU executive expressed concern about the numerous cyber attacks. "This increase in malicious cyber activity, in the context of the war against Ukraine, creates unacceptable risks of spillover effects, misinterpretation and possible escalation."
The European Commission says multiple DDoS attacks have recently been launched against several EU member states and partners claimed by pro-Russian hacker groups. This is "yet another example of heightened and tense cyber threat" that the Commission observes.
"We strongly condemn this unacceptable behavior in cyberspace and express our solidarity with all victimized countries. We remain determined to address and investigate malicious cyber activities that harm international peace, security and stability, including the security of the European Union and its Member States, their democratic institutions, citizens, businesses and civil society," the European Commission said.
The EU Executive Board calls on all member states to take appropriate measures against malicious cyber activities carried out from Russia. Member states should take preventive measures to protect critical infrastructure. "We underline our continued support for strengthening international cyber resilience, and for improving cyber threat preparedness and mitigating attacks."
The European Commission says it is monitoring the situation closely and is ready to take further steps, if necessary, to "prevent and counter malicious behavior in cyberspace."
Russia and the EU have been accusing each other back and forth for months of carrying out cyber attacks. In late March, Russia warned of cyber aggression from Western countries. According to the Kremlin, it is the work of "an army of cyber mercenaries" and "anonymous hackers and provocateurs" trained by the US and other NATO countries. Putin warned hackers not to wage war with Russia.
"No one should doubt that the cyber aggression unleashed against Russia will lead to serious consequences for the instigators and perpetrators. The source of the attacks will be traced. The attackers will inevitably bear responsibility for their actions in accordance with the requirements of the law," the Russian Foreign Ministry said in a statement. In May, President Putin therefore promised to step up his country's cyber defense.
Around the same time, the European Council condemned Russia's "malign activities" against Ukraine. In particular, the attack against the KA-SAT satellite network raised a lot of anger. This was because it also had an impact on other EU countries. The Council fears that the "systematic consequences" of the attacks could endanger the security of European citizens. "The European Union, in close cooperation with its partners, is considering further steps to prevent, deter, deter and address such malicious behavior in cyberspace," the Council said in a statement.
