Ukrainian national railway operator Ukrzaliznytsia had its online systems taken down by a significant cyberattack on Sunday that has forced physical ticket purchases and led to prolonged waiting times, reports BleepingComputer.
However, operations of the railway have not been impacted by the "highly systematic and multi-layered" intrusion, according to Ukrzaliznytsia, which noted that trains continued to be on schedule as it leveraged backups to support operational processes. "The railway continues to operate despite physical attacks on infrastructure, and even the most devious cyberattacks cannot stop it. As Ukrzaliznytsia has previously been a target of enemy cyberattacks, backup protocols have been implemented within the company," said Ukrzaliznytsia. While Ukrzaliznytsia said that it has already sought the assistance of the country's Computer Emergency Response Team, or CERT-UA, and the SBU Cyber Department in remediating affected systems, the railway operator still has not provided specific details regarding systems recovery.
Healthcare entities have been subjected to intrusions involving the novel Mimic ransomware variant dubbed "ELENOR-corp" that features advanced data theft and anti-analysis capabilities, according to Infosecurity Magazine.
Significant strides made by the U.S. in combating international cybersecurity threats and forging digital collaborations with other nations were noted by cybersecurity experts and former officials to potentially be endangered by the Trump administration's plan to transfer the Bureau of Cyberspace and Digital Policy to another department and establish a new cyber threat-focused bureau as part of a State Department overhaul, reports Cybersecurity Dive.
