Russian hackers reportedly target Ukraine’s largest private energy company


The DTEK group, which owns coal and thermal power plants in various regions of Ukraine, said the purpose of the hack was to “destabilize the technological processes” of its distribution and production companies, to spread propaganda about company activities and “leave Ukrainian consumers without electricity.”

The actual impact of the hack and the computer systems that were hacked are unclear. No outages caused by the incident have been reported. DTEK did not respond to requests for comment.

The hacking incident came to light days after Rinat Akhmetov, Ukraine’s richest man and owner of DTEK, sued Russia in the European Court of Human Rights for allegedly costing billions of dollars to Akhmetov in damages.
A Russian-speaking hacking group known as XakNet claimed to have hacked into DTEK’s networks this week and posted screenshots on the Telegram app of alleged DTEK data as evidence. The hacking group surfaced in March, according to a U.S. and allied government advisory, and claimed to target Ukrainian officials in support of Russia’s war.

XakNet had access to data belonging to an organization that was likely hacked by a Russian cyber-espionage group, suggesting a possible link between XakNet and the Russian government, said Alden Wahlstrom, principal analyst at US cybersecurity firm Mandiant, who investigated some of XakNet’s activities. activity.

On its Telegram channel, XakNet mocked and denied the suggestion that it is working with the Russian government.

CNN has requested comment from the Russian Embassy in Washington.

The hacking incident coincided with the Russian bombing this week of a DTEK-owned thermal power plant in Kryvyi Rih in central Ukraine, according to DTEK, whose websites say it employs 56,000 people.

Microsoft in an April report argued that Russian hacking has sometimes been used in tandem with kinetic military strikes. A cyberattack hit a Ukrainian broadcasting company on March 1, the same day as a Russian missile strike on a TV tower in Kyiv, according to the report.

Ukrainian energy suppliers have always been the target of Russian hacking teams since Russia annexed Crimea in 2014. The Ministry of Justice has accused the Russian military intelligence service of carrying out cyberattacks against services electricity utilities in 2015 and 2016 that cut power to parts of Ukraine.

The same Russian hacking group reportedly targeted electrical equipment in an area serving 2 million people in Ukraine in April, but Ukrainian officials say the hack was foiled.
“The company is making every effort to ensure the stable operation of the Ukrainian energy system during the war and to ensure uninterrupted power supply to Ukrainian consumers,” DTEK said in its statement on Friday.

Comments are closed.