Guerrero-Sade, a pioneer in research at AcidRain, says that where previous malware used by the Russians was narrowly targeted, AcidRaid is the best weapon.
“The biggest concern about AcidRaid is that they have stopped all security checks,” he says. “With previous wipers, the Russians were careful to operate only on certain devices. Now that security check has disappeared, and it is brutal. They have the ability to reuse it. See a supply-chain attack? “
Experts say the attack turned out to be typical of a “hybrid” war strategy used by Moscow. It was launched in concert with an invasion of the ground. Research by Microsoft outlining the emerging role of cyberspace in modern warfare has shown that certain types of coordination between Russian cyber operations and military forces have been observed at least six times.
“Russia’s integrated and destructive cyber-attack before the invasion of Ukraine shows that cyber-attacks are actively and strategically used in modern-day warfare, even if the risks and consequences of cyber-attacks are not always visible to the public,” said Danish Defense Minister Morten Budskov. Said in a statement. “The cyber threat is constantly evolving. Cyber-attacks can wreak havoc on our critical infrastructure, with deadly consequences. “
In this case, thousands of Internet users in Central Europe and Internet-connected wind farms suffered losses from Ukraine. And the implications are even greater: Viasat works with the US military and its partners around the world.
“Apparently, the Russians messed it up,” says Guerrero-Sade. “I don’t think they meant a lot of splash damage and involvement of the European Union. They used the EU as an excuse to respond by influencing 5,800 German wind turbines and others around the EU. ”
Just hours before AcidRain began its destructive work against Viasat, Russian hackers used another viper, called the Hermetic Viper, against Ukrainian government computers. The playbook was very similar, instead of satellite communication, there were Windows machines on the target networks that, in the early hours of the invasion, would be important to establish effective resistance for the government in Kiev.