As originally reported on Reuters, Ukrainian authorities are planning to review the defenses of government computer systems including those used at airports and railway stations after a cyber-attack on Kiev’s main airport.
Back in December there was malware detected at three separate Ukrainian power firms and this most recent malware attack seems to model the previous ones. The malware was discovered on a computer in the IT network of the Boryspil International Airport.
Malware similar to that which attacked three Ukrainian power firms in late December was detected last week in a computer in the IT network of Boryspil. The network includes the airport's air traffic control.
Ukraine's state-run Computer Emergency Response Team (CERT-UA) issued a warning on Monday of the threat of more attacks.
A spokeswoman for the airport said Ukrainian authorities were investigating whether the malware was connected to a malicious software platform known as "BlackEnergy", which has been linked to other recent cyber-attacks on Ukraine. There are some signs that the attacks are linked, she said. The attacks in December were reportedly the first time that they had seen a power outage due to a malware attack.
Ukraine's SBU state security service has blamed Russia, but the energy ministry said it would hold off on attribution until after it completes a formal probe. Tensions between the two countries continue to be strained by the ongoing conflict. Including, what has been called, an ongoing cyber-war with both countries attacking the others government computer systems.
