In November 2019, the T4U set off for the tenth time in Ukraine. Our project, in which we once again traveled almost the entire frontline and conducted information and cyber security courses for local government, police and the general public, was supported by the International Visegrad Fund www.visegradfund.org
Closer to the frontline, you can see that the local population is very interested in learning more about cyber security because they see that information and cyber space has turned into a weapon that is actively used by the adversary. The sense of danger is compounded by the fact that they are in close proximity to an area where there is complete lawlessness.
Initially, we were surprised that even people who live in direct threat to their lives can pay attention to cyber security. However, our lectures generated quite a lot of interest. People see that there is conventional war, information war and cyber war.
They all go hand in hand. From misinformation, blocking social media accounts to theft over the internet. All of this as a result of the connection between aggressive Russian policy and not only cybercrime, but also the connection of these structures to traditional and well-entrenched criminal subcultures in the post-Soviet space.
Various forms of internet fraud are widespread in Ukraine. Money is raised through fraud or extortion. For example, social networks are used to steal from bank accounts. Hackers also try to block accounts on social networks. These are often the accounts of activists and other people who, from the Kremlin's point of view, have a 'negative' influence on society. Social media profiles are also stolen or bought. Profiles obtained in this way are then used to spread disinformation. This is a great danger today, because information, both true and false, then spreads like an avalanche across the network.
In our lessons, we explain and practically demonstrate the various security and control methods. But even without special training, the average user can do a lot for his own security. Just know and follow the simple rules - update the software of your devices on time. We also recommend using different and complex passwords on all the services you use. This will make it harder for hackers to access your accounts or misuse your social networks.
There's also, of course, the responsibility of the state. However, the average user will usually become familiar with this and only when they are the victim of a crime. However, the state should also react preventively. And Ukrainian specialists have already managed to prevent several attacks or significantly reduce their impact.
Investigating such crimes is a special chapter. Attribution itself, i.e. identifying the perpetrator of cyber attacks and attributing the attack to a specific attacker, is complicated. Not to mention proving guilt. Ukraine's experience is very important for the EU as a whole, as well as for the V4 countries, which are also an important part of NATO's eastern wing. We know with a probability bordering on certainty that most of the attacks in this area are perpetrated by the 'usual suspects' - that is, Russia.
The opportunity to study attacks on Ukraine's vital infrastructure is invaluable experience. We have seen attacks on information databases of airports, banks, energy companies. Here, cooperation with Ukrainian specialists is extremely important. We analyse their experience and try to spread it among Czech experts.
Ukraine and the former Soviet Union are territories where cybercrime is much more widespread than in the EU, so we are interested in the methods used by the criminals themselves. It is a known fact that Russian-language cyber-crime is widespread around the world. There are indeed many experts, but there are also many illegal areas where they can use their knowledge. Whole new illegal markets are being created, for example, to sell stolen credit card information. The conditions for this business are very favourable. This is confirmed by the fact that old criminal elements that have already secured protection (cover) from law enforcement have joined forces with IT professionals.
In the West, we do not encounter this problem so often because IT professionals are in high demand and can make enough money without breaking the law. The second reason is that it is very difficult to enforce the law in Russia and the countries around it, especially in the area of cybercrime. So these criminal elements and groups feel quite safe in Russia. And if they steal from someone abroad, it is almost impossible to bring them to justice. For this reason, the problem has become so widespread that today Russian-speaking cybercrime has become a global threat.
In Ukraine, we work with Ukrainian experts who investigate these crimes. There is no substitute for this first-hand experience. Anyone who wants to know the details of the investigation must be there and ask the Ukrainians. In addition, we regularly invite our Ukrainian colleagues to the Czech Republic, Slovakia and Poland to work with our partner organisations.
Partners:
-Maidan Monitoring Information Centre, https://maidan.org.ua, Ukraine
-Slovak Society for Foreign Policy www.sfpa.sk, Slovakia
-Slovakia-Poland-Ukraine Research Centre, http://www.polukr.net/en/, Poland
Full text: https://www.radiosvoboda.org/a/rosijska-hybrydna-vijna-i-hackery/30410622.html
Powered by Froala Editor
