Ukraine has alleged a cyberattack on its main airport was launched from a computer server in Russia.
The country's state-run Computer Emergency Response Team (CERT-UA) said Kiev's Boryspil airport was subjected to an assault last week that included an attack on the network's air traffic control computers.
"The control centre of the server, where the attacks originate, is in Russia," military spokesman Andriy Lysenko said, adding the virus had been neutralised before it caused any damage.
"Attention to all system administrators; we recommend a check of log-files and information traffic," CERT-UA said in a statement.
An airport spokeswoman said authorities were investigating whether the malware was connected to a malicious software toolkit known as BlackEnergy, linked to cyber attacks that targeted other parts of Ukraine.
BlackEnergy was first deployed by cybercriminals in 2007 but, as the conflict between Russia and Ukraine dramatically intensified, a new version of the virus was discovered targeting Ukrainian government officials.
The Trojan Horse programme had been developed to extract personal information from its victims, according to security analysts and a US cyber intelligence firm traced the attack to a Moscow-backed group known as Sandworm, named after the desert-dwelling creature in the Dune science-fiction books.
The assault on Boryspil airport is said to be similar to an attack on three Ukrainian energy firms in December which plunged parts of the country into darkness.
The country's security service declared it found malicious code designed to take control of or destroy computer systems on the networks of several energy companies.
A local electricity firm later blamed the attack on "the intervention by unauthorised persons in the remote access systems".
0 nhận xét:
Đăng nhận xét