Between July 19-30 [2], a Spanish research institute fell victim to a prolonged cyber-attack orchestrated by the Russian hacktivist group NoName057. This attack had significant consequences, affecting 72 websites, including government institutions like La Moncloa and the Constitutional Court [1]. The motive behind this campaign was Prime Minister Pedro Sanchez’s expression of support for Ukraine during his visit to Kyiv [1]. Fortunately, no sensitive data was reportedly stolen in these attacks [1].
Description
In a separate incident on July 16-17, the Spanish National Research Council experienced a ransomware attack [1] [2]. This incident occurred after the FBI had previously warned critical infrastructure providers in the US about the threat of Russian hacktivists [1]. The FBI advised these providers to utilize DDoS mitigation services, collaborate with ISPs [1], and establish disaster recovery plans [1]. The objective of the attack was to disrupt critical infrastructure and the DDoS mitigation services provided by ISPs [2]. To address the situation [2], a disaster recovery plan was implemented [2].
Conclusion
These cyber-attacks had far-reaching consequences, impacting government institutions and critical infrastructure. However, the implementation of a disaster recovery plan helped mitigate the effects of the attacks. Moving forward, it is crucial for organizations to remain vigilant and take proactive measures to protect against future cyber threats. Collaboration with ISPs and the utilization of DDoS mitigation services will be essential in safeguarding critical infrastructure.
References
[1] https://www.infosecurity-magazine.com/news/russian-hacktivists-overwhelm/
[2] https://en.wikipedia.org/wiki/ETA(separatistgroup)
