The NSDC recorded a massive cyberattack from the Russian Federation on the document management system of government agencies

The National Cybersecurity Coordination Center under the National Security and Defense Council of Ukraine recorded attempts to distribute harmful documents through the System of Electronic Interaction of Executive Authorities (CMEA OIV).

According to the NSDC staff, the purpose of the attack was the mass infection of information resources of state bodies, since it is with the use of this system that document circulation is carried out in most of them.

“The harmful documents contained a macro that, when files were opened, secretly loaded a program for remote computer control. The methods and means of implementing this cyberattack make it possible to associate it with one of the hacker spy groups from the Russian Federation,”, – the department noted.

According to the scenario, the attack refers to the so-called supply chain attack. This is a supply chain attack in which attackers try to gain access to a target organization not directly, but through vulnerabilities in the tools and services that it uses.