Since the start of the Russian war of aggression in Ukraine, German security services have been warning of intensified Russian cyber attacks.

The latest warning is issued by the Office for the Protection of the Constitution.

In a security notice for the economy, the Federal Office for the Protection of the Constitution names cyber attacks by the Kremlin-loyal hacker group "Killnet".

The Russian hackers, who joined together as a counter-movement to the "Ukrainian Cyber ​​Army", are currently carrying out denial-of-service attacks against German websites, which affect private companies and research.

In the case of DDoS attacks, the servers are overloaded by massive artificial calls, which cause the website to fail.

According to the Office for the Protection of the Constitution, the DDoS attacks from "Killnet" are comparatively harmless disruptive attacks that only limit the presence of the website.

So far, no attacks have been detected that went beyond DDoS attacks, but further attacks by Russian hackers are to be expected.

Last week, the "Killnet" hackers published a list of web addresses of German "targets" on their Telegram channel, presumably to inform their followers about their project and encourage them to participate.

The websites of Postbank and Wiesbadener Aareal Bank as well as clinics and universities were listed.

However, according to the “Spiegel”, Postbank has not detected any DDoS attacks in the past two weeks.

According to security circles, the announced attacks on the various companies have obviously not yet been implemented.

However, "Killnet" has already attracted attention with "successful" attacks on the websites of German authorities.

The Federal Criminal Police Office and the Federal Police conducted mass coordinated disruption attempts.

The pages of the state police in Baden-Württemberg and Hesse were temporarily unavailable.

According to an internal report by the authorities, the website of the Bundestag, the Federal Ministry of Defense and the website of Chancellor Olaf Scholz were also the target of attacks.

According to reports by IT security researchers, another Russian hacker group is also active again.

In July 2021, "REvil" was responsible for the hacking of customers of the software company Kaseya.

More than 1,500 companies worldwide were affected by the ransomware attack.

In October 2021, some suspected members of the hacker group were arrested.

Attacks with various types of malware that can be attributed to "REvil" have now become known.

Keywords: