Ukrainian war: Italy risks being among the greatest targets of hackers

The offensives launched through malware, internet shutdown, Ddos and ransomware also concern Germany and Belgium. This is what emerges from a report by Yoroi. "Technologies are not enough, digital security strategies must be developed" 28 Feb 2022

Machine learning systems, accurate facial recognition biometric technology and artificial intelligence deep learning concepts. 3D Rendering of Man face and dots connect with city background. With the start of the war between Russia and Ukraine, cyber-attacks have also multiplied both against critical infrastructures in Kiev and against the public and private sectors of many European countries. Highlighting the new scenario in the field of cybersecurity and the risks associated with the invasion of Russia in Ukraine is Yoroi, a company of the Tinexta Cyber group specializing in IT security. Among the vectors most used to launch attacks are malware, such as the “KillDisk” wiper, which eliminates the data contained in the victims' servers, but also Internet Shutdowns and Ddos and ransomware attacks. Ransomware attacks, according to Yoroi's findings, have grown considerably in recent weeks and have also affected private companies in Germany, Belgium and Italy: "They could be a form of indirect pressure fueled by Russian propaganda that spurs the most nationalist fringes against the 'enemy' West - Yoroi explains in a note - We also have evidence of this form of "indirect" pressure from the communications of double extortion ransomware groups such as Alpha / BlackCat, which in the announcements for its affiliates have indicated organizations as targets Ukrainians relevant to national security ". As for Italy, the exposure, frequency and target of attacks also have a potential impact on our country, both towards the private and manufacturing sector and towards the public, administrative and services sectors, especially in a historical moment. in which the cyber risk is further exacerbated by a phase of conflict at an international level. In order to defend individual countries and their administrative and private sector activities from the growing risks in the cyber sector, it is important - according to Yoroi's analysis - to adopt a higher level of protection, which is able to overcome the limitations of an approach to digital security. which still today is too anchored to exclusively technology-driven strategies. "Too simplistically it is believed that to raise the level of cyber security it is enough to install a little technology or software to reduce exposure to risks - explains Yoroi - Not so, the security approach must be approached in a more strategic way. , in the sense that a true 'Digital Security Strategy' must be developed ”. Unlike what happens in the private sector - where, more than the authorship of the attacks, the immediate containment of damages and the restoration of operations, even better without interruption, counts - explains Yoroi - the issue of the attribution of cyber attacks is highly strategic at an international and political level. To give just one example, foreign influence through cyber attacks on elections has important diplomatic consequences and identifying the sources of financing for terrorist groups is strategic. Thus opens the issue of digital sovereignty for full control of the same and for their best protection: "European subjects who share the same governance and the same regulation - underlines Yoroi's analysis - are able to ensure full control, independence from third-party geopolitical influences, ownership of assets and the accountability necessary to guarantee the management of such critical services. From our point of view we need digital champions at national level capable of aggregating proprietary skills and assets, with an institutional footprint ".