One of the largest Ukrainian online banks, Monobank, suffered a large-scale DDoS attack targeting a service used to collect donations for the needs of the Ukrainian military. The attack reached a volume of 7.5 billion requests per second, but the work of the bank remained unchanged.
The attack began on Friday evening and lasted until Monday morning, causing serious disruptions to the service used by Ukrainians to collect donations for the needs of the army. The CEO of Monobank, Oleg Horokhovskyi, noted that this was an “untypical” incident due to its scale. However, the attack did not affect the general work of the bank, as the company promptly cooperated with Ukrainian security services and American experts from Amazon Web Services to reduce the flow of unwanted traffic.
Monobank has already suffered similar attacks before, but this time the goal of the hackers was to disrupt the service that facilitates the collection of donations for the Armed Forces of Ukraine. After the start of the unexpected invasion of Ukraine on the territory of the Russian Kursk region, Monobank users began collecting donations three times faster than before. This probably caused dissatisfaction among opponents who decided to attack the service.
This is not the first time that Monobank has become a target for hackers. Earlier in January, the bank suffered a DDoS attack that caused 580 million service requests in three days. Monobank, which serves customers exclusively through a mobile app, is an attractive target for cybercriminals. This time, the company assumed that Russia was behind the attack, but there is no evidence of this yet. Along with Monobank, another Ukrainian service, EasyWay, also had to face a DDoS attack that could affect its work. Meanwhile, Russian services also suffer from attacks that often originate from Ukraine. In August, unnamed hackers attacked government and corporate websites, as well as critical infrastructure services in Russia’s Kursk region.
Monobank continues to be one of the most frequently attacked IT targets in Ukraine, and the latest attack shows how important it is to have robust defense mechanisms and to work with leading cyber security experts.