Increase in Cyber Threats from Russia in 2024

In the second half of 2024, a notable rise in Russian cybercriminal activity was observed, increasing by 48% compared to the first half of the year.

Source: analytical report "Russian Cyber Threats" H2'2024 by the CERT-UA team, State Cyber Protection Center.

Direct quote: "Among the key trends in the second half of 2024 is a significant increase in incidents by 48% compared to the previous half year. The CERT-UA team noted a rise in the complexity of attacks and the sensitivity of targeted entities."

It is reported that Russian cybercriminals are actively employing automation, utilizing supply chain attacks to gain access through software providers, and combining espionage and sabotage techniques.

The primary focus is on intelligence gathering, particularly attempts to breach situational awareness systems and defense enterprises that may impact the operational situation on the front lines.

Analysts point out that in 2024, Russian cyber strategy has entered a new phase: larger, more complex, and better-coordinated campaigns that pose a high threat to critical infrastructure.

Despite this, due to improved cybersecurity hygiene in Ukraine, enhanced early threat detection, and strong international cooperation, a significant portion of attacks has been thwarted at the preparation stage.

Background:

• On April 7, the State Special Communications Service warned about targeted cyber activity aimed at espionage against Ukrainian institutions involved in military innovation.