Fresh Surge of Cyber Attacks Hits Ukraine
A new wave of cyber attacks has been detected in Ukraine, with perpetrators impersonating the National Bank of Ukraine. Scammers are distributing malicious emails in an attempt to gain access to citizens' computers. This information comes from Glavkom, citing the National Bank's press service.
The attackers replicate the visual style of official regulator communications and use various email addresses for their campaigns. Recipients are urged to click a link to download an archive containing what is described as a list of important documents. Hidden within these files is malware that, once downloaded, grants hackers full remote access to the victim's device, along with their personal data and passwords. Official messages from the National Bank are sent exclusively from corporate addresses ending in @bank.gov.ua, whereas fraudsters often rely on free email services like Gmail or Ukr.net, or addresses containing typos.
In a related development, cybercriminals have launched a mass email campaign impersonating Kyrylo Budanov, the head of the Office of the President of Ukraine. One such fraudulent email was received by Yuriy Klufas, president of the Ukrainian National Association of Canada. The message requested active media and informational support to help bring Ukrainian citizens back to their homeland.
How to Protect Yourself from Cybercriminals
Ukraine's Cyber Police have urged citizens to verify content on social media and exercise caution when receiving suspicious emails. Creating realistic forgeries now takes just minutes, making it essential to follow certain guidelines to avoid falling victim to cybercrime.
Tips to avoid becoming a target:
- Ignore suspicious emails: do not open attached files, archives, or click on links.
- Check the domain: official emails from the National Bank come only from corporate addresses in the @bank.gov.ua domain.
- Pay attention to details: scammers frequently use free email services or addresses with errors in the names of government agencies.
What to do if you have already downloaded a dangerous file:
- Disconnect from the internet: turn off Wi-Fi or unplug the network cable.
- Run an antivirus scan: use licensed antivirus software to perform a full system scan.
- Change your passwords: immediately after cleaning your device, update passwords for all important accounts.
- Block bank cards if necessary: if passwords for online banking were stored on your computer, call your bank right away to temporarily freeze accounts.
- Review session history: in your social media security settings, terminate all active sessions on other devices.
This latest wave of cyber attacks highlights the growing risks for Ukrainian citizens as technology evolves and criminal methods shift. The dangers of cyber fraud demand heightened caution and awareness from users, as attackers constantly refine their tactics. In this environment, it is critical that the public stays informed about how to safeguard their data and responds to potential threats quickly and effectively.
As cybercriminals continue to exploit vulnerabilities, a recent wave of attacks has also targeted taxpayers, with fraudsters masquerading as official tax authorities. This alarming trend highlights the increasing sophistication of cyber threats in Ukraine. To understand how these tactics are evolving and what measures you can take to protect your personal information, read more about the situation in our detailed report.