Recent hacking attacks have resulted in soldiers’ personal data and GPS coordinates being stolen through fake apps, putting the safety of our soldiers at risk.
Ukrainian organizations, including CERT-UA and the Ministry of Defense and Armed Forces (MILCERT), discovered two serious cyberattacks that operated through Signal Messenger to send messages with fake links to applications for the Griselda and Eyes military systems. Military personnel were asked to download these “apps” which were actually infected with malware containing the Hydra virus.
“Griselda is an information processing and distribution system based on artificial intelligence, and Eyes is a military surveillance system. However, both applications were fake, and the purpose of the hackers was to obtain data to access military systems and steal the GPS coordinates of the devices. With these attacks, attackers hoped to steal credentials that would allow them to gain access to sensitive military systems.
When military personnel unsuspectingly downloaded these apps, they infected their devices with malware instead of providing the expected functionality. The hackers were trying to obtain important data, including the coordinates of soldiers on the battlefield, potentially putting their lives at risk.
Fortunately, the Ukrainian special services quickly detected the threat and thwarted the attack, preventing significant damage from the hackers. However, this incident shows the importance of vigilance in cyberspace, especially in wartime.