Ukraine-Russia war: Check Point updates analysis data of cyber attacks

Ukraine-Russland-Krieg: Check Point aktualisiert Analysedaten der Cyberangriffe

Cyber attacks on authorities beyond Ukraine rise by 21 percent

The security researchers from Check Point Research (CPR) give an overview of the cyber attacks that were observed during the war between Russia and Ukraine. In the first three days of fighting, attacks on the government and military sectors of Ukraine increased by 196 percent. Since then, they have decreased, by 50 percent in the last 7 days. CPR suspects that the hackers have moved to attack other governments focused on the conflict. However, IT attacks on all industries in Ukraine and Russia have increased significantly and reached the highest level since the beginning of the war and thus in 2022.

  • In Ukraine, CPR documented a 20 percent increase in attacks on all industries since the beginning of the fight.
  • In Russia, CPR documented a 1 percent increase in attacks on all industries since the beginning of the fight.
  • CPR provides data on the observed attacks by region: Europe (+ 14 percent), North America (+ 17 percent), APAC (+ 11 percent), Latin America (+ 17 percent) and Africa (- 2 percent)

Check Point Research (CPR) has updated the statistics on the observed cyber attacks related to the Ukraine-Russia war. In the last 7 days, the highest number of attacks has been recorded overall – since the beginning of the year.

  • In Ukraine, the number of average weekly attacks per organization in the last week was 1466, which is 20 percent more than before the start of the conflict and 13 percent more than in the first two weeks of the conflict. At the same time, the number of networks in the country has significantly decreased by 27 percent due to the emergency situation.
  • In Russia, the number of average weekly attacks per organization over the past week was 1274, and the changes are smaller: 1 percent more than before the start of the conflict and 4 percent more than in the first two weeks of the conflict.
  • Globally, the average weekly attacks per organization last week were 1266, 14 percent higher than before the start of the conflict and 15 percent higher than in the first two weeks of the conflict.

Cyber attacks by region

  • In Europe (EMEA), the average weekly attacks per organization last week were 1068, 14 percent higher than before the start of the conflict and 15 percent higher than in the first two weeks of the conflict.
  • In North America, the average weekly attacks per organization last week were 991, 17 percent higher than before the conflict began and 15 percent higher than in the first two weeks of the conflict.
  • In Asia and Oceania (APAC), the number of average weekly attacks per organization last week was 1718, 11 percent higher than before the start of the conflict and 13 percent higher than in the first two weeks of the conflict.
  • In Latin America (LATAM), the average weekly attacks per organization in the last week were 1837, 17 percent higher than before the start of the conflict and 20 percent higher than in the first two weeks of the conflict.
  • In Africa, the average weekly attacks per organization in the last week were 1987, 2 percent lower than before the start of the conflict and 1 percent lower than in the first two weeks of the conflict.

View of the state and military sector

With regard to the government and military sector, where CPR recorded a significant increase in attacks in Ukraine in the first days of the conflict, fewer attacks were recorded in Ukraine last week than in the first two weeks of the war (59 percent less). However, there has been a significant increase in attacks on the state and military sectors in all regions worldwide, with an average increase of 21 percent compared to before the start of the conflict and 19 percent more than in the first two weeks of the conflict.

Omer Dembinksy, Data Group Manager at Check Point

Omer Dembinksy, Data Group Manager at Check Point Software Technologies , explains about the observations: “It seems that the hackers were initially very focused on the war, and after two weeks they understood what they could and could not do. In other words, the hackers have gone back to day-to-day business. In addition, we see a concentration of attacks on government and military targets, possibly as part of the diplomatic impact of the war and taking advantage of the increased public interest in the war and events, which makes it possible to carry out phishing attacks. We will continue to monitor cyber attacks in Russia, Ukraine and beyond in the coming period.”

Outsourced IT Service | Dedicated Solutions Outsourcing

Ready to see us in action:

More To Explore

IWanta.tech
Logo
Enable registration in settings - general
Have any project in mind?

Contact us:

small_c_popup.png