Beware: Phishing attacks on UKR.NET - How to protect your data
Ukraine has seen an increase in cyber attacks aimed at stealing users' personal data, especially through phishing sites that imitate UKR.NET. Government experts are calling for increased vigilance and suggesting protective measures.
Cyber threats in Ukraine
Surge in hacker activity
In mid-summer, Ukraine experienced a noticeable increase in cybercrime. The attackers targeted the personal data of citizens, in particular, by creating a fake version of the popular portal UKR.NET.
Actions of the UAC-0102 group
According to CERT-UA, the government's computer incident response center, there is an increase in attacks from by the hacker group UAC-0102. Their main goal is to gain unauthorized access to UKR.NET accounts. Of particular interest to criminals are tax officials, civil servants, military personnel and employees of various organizations.
Attack Methods and Vulnerabilities
Attackers often use emails with HTML attachments that mimic web pages. They exploit the fact that public email services are usually less secure than corporate systems.
When opening such an attachment, the victim is redirected to a phishing site that is visually identical to UKR.NET. Logins, passwords and other confidential information entered on this site go directly to cybercriminals.
Security Recommendations
CERT-UA offers the following measures to protect against such attacks:
- Enable two-factor authentication wherever possible.
- Refusal to use public email services on work computers and corporate networks.
- Using tools to forward emails to more secure corporate mailboxes.
Glossary
- UKR.NET - popular Ukrainian Internet - portal and mail service.
- CERT-UA - Government Center for Response to Computer Emergency Events in Ukraine.
- UAC-0102 is the code name for a group of hackers carrying out cyber attacks.
- Phishing is a type of Internet fraud whose goal is to gain access to confidential user data.
- Two-factor authentication is a method of identifying a user in any service by requesting additional confirmation.
Links
Answers to questions
What trends are observed in cybercrime in Ukraine ?
Who are cyber attacks targeting in Ukraine?
What methods do hackers use to steal data?
Why do hackers attack public email services?
What measures are recommended to protect against cyber attacks?
Hashtags
Save a link to this article
Discussion of the topic – Beware: Phishing attacks on UKR.NET - How to protect your data
The article informs about the growth of cybercrime in Ukraine, focusing on phishing attacks aimed at UKR.NET users. The methods of hackers, risks for users and ways to protect personal data are described.
Latest comments
8 comments
Write a comment
Your email address will not be published. Required fields are checked *
Oksana
That's terrible! 😱 I use UKR.NET every day. How can I now be sure that my data is safe?
Hans
Oksana, I understand your concern. But there is no need to panic. Just be vigilant and follow the CERT-UA recommendations. Two-factor authentication is a great way to protect your account. 👍
Marie
I agree with Hans. I've been using two-factor for a long time wherever I can. This really saves! 🛡️ By the way, did you know that there are special applications for generating one-time codes?
Oksana
Marie, really? I haven't heard of these. Can you recommend any? I'd love to try it to be safer.
Giovanni
All this security fuss is a waste of time. Previously, we lived without any two-factor authentication and nothing, we managed. And now every step - password, code, confirmation. Ugh! 😒
Hans
Giovanni, times are changing, friend. Hackers are becoming more sophisticated and we need to adapt. It’s better to spend a minute on additional protection than to deal with the consequences of a hack later. 🕵️♂️
Marie
Oksana, of course! I'm using Google Authenticator. Very convenient and reliable. There is also Authy and Microsoft Authenticator. Choose what you like best! 😊
Pedro
Friends, let's not forget about basic things? Regularly changing passwords, using different passwords for different services. This is also important! And yes, Hans is right - it's better to be safe. 🔒