Experts of the Ukrainian special service found that the cyberattack began via emailing infected counterfeit accounting documents by virus — after opening files on computers, malicious software was downloaded on them to carry out unauthorized interference with judicial information systems and theft of proprietary information, the SBU press office said in a statement, Censor.NET reports citing Interfax-Ukraine.
The SBU determined that the detected malware was connected to control and command servers, which, in particular, had Russian IP addresses.
According to the experts' conclusions, the plan of the special services of the Russian Federation was to block the stable functioning of the judicial information system of Ukraine. The joint efforts of the SBU, the State Judicial Administration and of the State Service of Special Communication and Information Protection of Ukraine (CIP) made it possible to contain the cyberattack and prevent its further impact.
"The SBU, as a key agency ensuring national security, continues implementing a set of measures to protect the country's critical information infrastructure," the statement reads.