Officers imagine the hacking group used the stolen information to conduct cyberattacks, data sabotage and intelligence gathering and targeted on navy, authorities and significant infrastructure targets.
“The Russians tried their greatest to cowl all weak routers, whereas redirecting requests solely to domains they had been concerned about. For instance, *.gov.ua, or with names akin to Microsoft Outlook, navy programs,” stated a regulation enforcement official collaborating within the joint operation, granted anonymity to reveal extra particulars.
Ukraine’s SBU stated “the Russian particular companies paid particular consideration to data exchanged between workers and servicemen of state our bodies, items of the Ukrainian Protection Forces and enterprises of the defense-industrial complicated.”
Businesses tied the marketing campaign to hacking group Fancy Bear (also referred to as APT28 and Forest Blizzard), which has beforehand been recognized by Western officers as a part of the Russian navy intelligence service GRU.
Hackers exploited weaknesses in routers since at the least 2024, together with in well-liked TP-Hyperlink routers. By hacking the routers, they had been in a position to eavesdrop on information exchanges from cell units and laptops and bypass encryption protocols, safety companies stated.
