While the Ukrainian government was very quick to insist that last week’s cyberattack must be the fault of Russia, the nation’s Cyber Police appear to disagree, as they’ve raided a Ukrainian software company, seizing a number of servers, and saying they believe that company was behind the spread of the malware.
The target of the raid was M.E. Doc, a company that makes accounting software. Officials say the investigation is ongoing, but that the first infections came from a malicious update of the accounting software released through the company’s servers.
Officials say the vulnerability that led to the attack was written into M.E. Doc’s software updates months before the malware actually hit, suggesting the overall cyberattack involved months of planning, and some malicious activity actually started back in April, with the software stealing data from customers, including large banks and businesses.
The attacks started in Ukraine, and quickly spread to Russia, and ultimately worldwide. Ukrainian officials continue to maintain that there is some “nation-state,” presumably Russia, behind the matter, despite the operation having originated within a Ukrainian company.
Last 5 posts by Jason Ditz
- US Airstrikes Kill at Least 40, Mostly Civilians, in Eastern Syria - November 18th, 2018
- Clashes Between Pro-Turkish Rebel Factions Kill 25 in Syria's Afrin - November 18th, 2018
- Top White House Advocate of Severe Sanctions Against Saudis Resigns - November 18th, 2018
- Trump Says CIA Assessment of Khashoggi Murder 'Premature' - November 18th, 2018
- Pro-Saudi Forces Launch New Offensive Against Houthis in NW Yemen - November 18th, 2018