Cyber threats from Russia have become an international threat to the critical infrastructure of EU countries. This is stated in the latest report of the EU Computer Emergency Response Team (CERT-EU).
The CERT-EU report concludes that Russian cyberattacks are not limited to Ukraine and are already targeting critical facilities of the European Union. Special attention was paid to destructive attacks with data-wiping malware, such as the recent attempt to attack a Polish energy operator. The Sandworm hacking group, which is subordinate to the Russian GRU, is suspected in this attack.
Sandworm’s attacks on Ukraine’s energy infrastructure have already proved to be powerful tools of geopolitical pressure. The report highlights key methods of action by cybercriminals, including the use of geopolitical events for phishing attacks and the exploitation of software vulnerabilities. CERT-EU recommends organizations, especially in the energy sector, prepare for possible attacks by implementing data backups and strengthening cybersecurity.
The report is important not only for EU countries but also for Ukraine, which intends to implement international practices for the protection of information systems. Ukrainian experts emphasize the importance of this experience for improving national cybersecurity.
| Topic | Recommendations |
|---|---|
| Backup | Regularly create data backups |
| Recovery Planning | Develop recovery plans after incidents |
| Cyber Resilience | Strengthen system cyber resilience |
| Monitoring | Enhance monitoring level during significant events |
