Cybercriminals create fake ukr.net pages to steal credentials from users, especially government officials and the military. CERT-UA advises to take security measures, including two-factor authentication.
Cyber attacks on ukr.net
Warning about phishing attacks
The State Service for Special Communications and Information Protection of Ukraine through its response team CERT-UA informs about a new wave of cyber attacks aimed at stealing authentication data users of the popular mail service ukr.net. Criminals pay special attention to civil servants, military personnel and employees of Ukrainian companies and organizations.
Attack mechanism
Cybercriminals distribute emails with attached archives that contain HTML files. When opening these files, the user is automatically redirected to a fake UKR.NET page. Entering a login and password on this fake page leads to the transmission of confidential data to attackers.
Protection recommendations
To protect against such attacks, CERT-UA offers the following security measures:
- Activate two-factor authentication (detailed instructions are available at link ).
- Do not use public mail services on work computers.
- Set up filtering of incoming messages with forwarding of copies to corporate mail for further analysis of suspicious emails.
Other cyberthreats
Previously, the State Intelligence Service reported targeted cyberattacks on civil servants, the military and representatives of defense enterprises of Ukraine using malicious software that is distributed through the Signal messenger. In addition, cases of using the topic of drone purchases for attacks on Ukrainian defense enterprises have been recorded.
Glossary
- CERT-UA - The Computer Emergency Response Team of Ukraine, a division of State Special Communications.
- UKR.NET - Popular Ukrainian postal service and information portal.
- State Special Communications - State Service of Special Communications and Information Protection of Ukraine.
- Signal - Secure instant messaging.
- Two-factor authentication - A method of user identification using an additional factor in addition to a password.
Link
Answers to the questions
How the attackers are they trying to steal credentials of ukr.net users?
Who is the main target of these cyberattacks?
What security measures does CERT-UA recommend to protect against such attacks?
What other methods of cyberattacks are used by attackers against Ukrainian targets?
What is the role of CERT-UA in countering cyberattacks?
Hashtags
Save a link to this article
Discussion of the topic – Caution: Cyber attack on ukr.net - How to protect your email account
The CERT-UA government team warns of cyber attacks aimed at stealing credentials of ukr.net users. Criminals use fake websites and send emails with dangerous attachments, targeting civil servants, the military and employees of Ukrainian organizations.
Latest comments
8 comments
Write a comment
Your email address will not be published. Required fields are checked *
Olena
Wow, what an insidious scheme! 😱 It's good that CERT-UA warns about such attacks. One must be vigilant with all letters, especially with attachments.
Maxim
Yes, Olena, this is really serious. I have been using two-factor authentication on all important accounts for a long time. This significantly increases security. 🔒
Sophie
And I work in a government agency, and we were recently given cyber security training. Now I always check the website address before entering data. 🕵️♀️
Ivan
I wonder why exactly ukr.net? Maybe because of his popularity among Ukrainians? 🤔 Although I personally prefer Gmail.
Grzegorz
Well, it's all nonsense! Who even uses mail these days? Messengers have long since replaced all these outdated services. Why those two-factor authentications, they only complicate life! 🙄
Maria
Grzegorz, you are wrong! Email is still very important, especially for work. And two-factor authentication is a necessity in today's world. Safety first! 💪
Lucas
I agree with Maria. By the way, I heard that hackers are now also attacking through Signal. You can't relax anywhere. 😅 Maybe someone knows some additional protection methods?
Olena
Lucas, in addition to two-factor authentication, I also use a password manager. It helps to create complex unique passwords for each service. I also regularly update all programs and the operating system. 🛡️