Threat Intelligence, Critical Infrastructure Security

Evolving Russian cyberattacks against Ukraine detailed

Flags of Russia and Ukraine. No war. Peace. Relationship between Ukraine and Russia.

Attacks launched by Russian threat actors against Ukraine were noted by Ukraine's Computer Emergency Response Team to have been evolving during the past year, reports The Record, a news site by cybersecurity firm Recorded Future.

After engaging in malware intrusions aimed at pilfering credentials and other sensitive information before exiting hacked systems during the first half, more Russian hackers have engaged in the attempted compromise of previously breached systems for subsequent cyberespionage operations during the second half of the year, according to a report from CERT-UA. Moreover, increased organizational awareness regarding phishing intrusions has prompted Russian attacks to leverage social engineering techniques as an initial access vector, with APT28, also known as Fancy Bear, and Void Blizzard harnessing such a tactic to target Ukraine's government organizations and military.

Additional findings revealed that cyber incidents against Ukraine dropped during the second half of 2025 despite increasingly sophisticated threats. The decline, which is the first since Russia's invasion commenced three years ago, has been attributed to improved cyber defenses among Ukrainian entities.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds