Since the war started, the SSU Cyber Security Situation Center prevented and neutralized 827 critical cyberincidents and cyberattacks in the national cyber space.

That was the outcome of direct analysis of over 240,000 critical information security events detected in the reporting period.

Note:

A detected cyberincident/cyberattack is the result of direct analysis of critical events related to information security.

Prevailing types of cyber threats (hacker attacks) were the following:

• Connection to C&C Server;
• Intrusion/Login Attempts;
• Vulnerability exploitation;    
• Malware infection;
• Web App Attack;
• Information Gathering/Scanning, etc.

Part of the SSU Cyber Security Situation Center is the SIEM, Security Information and Event Management System, which monitors events in real time and conducts cyber security assessment. Potentially critical events are directly handled by security analysts, allowing to promptly detect and thwart threats in the national cyberspace.

The March-May 2022 report is attached.

You can access previous reports in the section Protection of Information and Cyber Security.