SBU boosts information security of enterprises in Ukraine’s energy sector
SBU continues to expand its cooperation in the field of cybernetic security with key critical infrastructure facilities. To develop an effective system of cyber-security, SBU has signed a memorandum with Ukrenergo national energy company and Ukrhydroenergo private joint stock company.
The document should ensure information exchange using the MISP-UA platform, between SBU and strategically important enterprises of Ukraine’s energy sector on cybernetic threats. The platform would ensure real-time exchange of materials, in particular, of technological information on neutralised and potential cyber-threats. Also, such interdepartmental interaction will contribute to effective response of the Ukrainian intelligence service to cyber-attacks, especially the highly complex intrusion attempts.
The SBU Situational Centre for Cybersecurity is ready to continue providing the necessary protection not only to critical infrastructure objects, state bodies and enterprises. “Any representative of large, medium and even small businesses can contact the Centre for advice and assistance,” said SBU Head Vasyl Hrytsak at the opening of the Centre.
Over the last five years, there has been an evolution of cyber-attacks on Ukraine; increasingly, they are bearing the signs of cyber-espionage and cyber-terrorism tools. SBU notes the growth of activity of Russia’s special services in conducting targeted cyber-attacks for gaining unauthorized access to information systems of state authorities of Ukraine. Cyber-attacks also aimed at violating the regular functioning of computer networks and management systems running technological processes on critical infrastructure objects. Attackers used ‘Black Energy’ intrusion tool for series of cyber-attacks on computer networks of Ukrainian energy facilities, SBU says.
Reference: Employees of SBU Situational Centre for Cyber-security, on the basis of open-code platform MISP (Malware Information Sharing Platform), have created a system for real-time collecting and processing information on cyber-security incidents and exchange of technical data of identifiers for critical infrastructure compromises among the security field actors. This platform is widely used throughout the world and is also compliant to international standards of EU and NATO. It is used by the main international cyber-security entities such as FIRST, CIRCL, CiviCERT, NATO NCI Agency.
SBU Press Centre
For the Attention of the SBU Head