Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Belarus is among the top three in terms of cyber attacks in the CIS.
A study of current cyber threats to the CIS countries for 2023 and the first half of 2024 showed that Belarus ranks third in terms of the number of cyberattacks among the Commonwealth countries, accounting for 7% of all attacks. The main threats to Belarusian companies are cyberespionage groups and hacktivist communities.
Positive Technologies analysis showed that in Belarus, the most frequent victims of cyberattacks were government agencies (22%), industrial enterprises (14%), financial companies (11%), and organizations from the field of science and education (8%). In 76% of cases, the attackers used malicious software. Overall statistics for the CIS show that spyware (41%) and remote control software (37%) were most often used in attacks. In addition, ransomware was used in 22% of the incidents, and 88% of such attacks were financially motivated, and the ransom amounts ranged from several hundred thousand to several hundred million rubles.
Between 2023 and 2024, cyberespionage groups carried out 18% of successful attacks against the CIS countries. Groups such as XDSpy, Lazy Koala and Sticky Werewolf are especially dangerous for Belarus. For example, Sticky Werewolf attacks government agencies, industrial enterprises, telecommunications companies, as well as organizations from the field of science and education, using phishing emails with malicious attachments disguised as official documents. The attackers of this group regularly update their tools: in 2023, they used the MetaStealer infostealer, and in 2024, they added Glory and Rhadamanthys stealers to their arsenal.
Hacktivists also pose a significant threat to Belarusian organizations, accounting for a quarter (26%) of all cyberattacks against the CIS countries. At the end of 2023, the hacktivist group Cyber Partisans announced the hacking of the website of the state agency BelTA and the theft of 90 GB of confidential information, including the personal data of employees. In April 2024, they reported an attack on the country's largest fertilizer producer, Grodno Azot, claiming that they were able to completely stop the plant's operation.
Social engineering remains the second most popular method of attacks on Belarusian companies, being used in 68% of cases. Attackers actively use the topic of paying taxes to lure out personal, accounting, or banking data. In August 2023, the Ministry of Taxes and Duties of the Republic of Belarus warned citizens about a wave of attacks when fraudsters called victims on behalf of the department's employees in order to "check" passport data.
Source
A study of current cyber threats to the CIS countries for 2023 and the first half of 2024 showed that Belarus ranks third in terms of the number of cyberattacks among the Commonwealth countries, accounting for 7% of all attacks. The main threats to Belarusian companies are cyberespionage groups and hacktivist communities.
Positive Technologies analysis showed that in Belarus, the most frequent victims of cyberattacks were government agencies (22%), industrial enterprises (14%), financial companies (11%), and organizations from the field of science and education (8%). In 76% of cases, the attackers used malicious software. Overall statistics for the CIS show that spyware (41%) and remote control software (37%) were most often used in attacks. In addition, ransomware was used in 22% of the incidents, and 88% of such attacks were financially motivated, and the ransom amounts ranged from several hundred thousand to several hundred million rubles.
Between 2023 and 2024, cyberespionage groups carried out 18% of successful attacks against the CIS countries. Groups such as XDSpy, Lazy Koala and Sticky Werewolf are especially dangerous for Belarus. For example, Sticky Werewolf attacks government agencies, industrial enterprises, telecommunications companies, as well as organizations from the field of science and education, using phishing emails with malicious attachments disguised as official documents. The attackers of this group regularly update their tools: in 2023, they used the MetaStealer infostealer, and in 2024, they added Glory and Rhadamanthys stealers to their arsenal.
Hacktivists also pose a significant threat to Belarusian organizations, accounting for a quarter (26%) of all cyberattacks against the CIS countries. At the end of 2023, the hacktivist group Cyber Partisans announced the hacking of the website of the state agency BelTA and the theft of 90 GB of confidential information, including the personal data of employees. In April 2024, they reported an attack on the country's largest fertilizer producer, Grodno Azot, claiming that they were able to completely stop the plant's operation.
Social engineering remains the second most popular method of attacks on Belarusian companies, being used in 68% of cases. Attackers actively use the topic of paying taxes to lure out personal, accounting, or banking data. In August 2023, the Ministry of Taxes and Duties of the Republic of Belarus warned citizens about a wave of attacks when fraudsters called victims on behalf of the department's employees in order to "check" passport data.
Source
