The EU Mobilises Its Cyber Rapid Response Team To Deal With Russian Attacks

The Ukrainian conflict is escalating and the tensions between the US, EU, UK and Russia have increased.

Russian troops have entered Ukraine, but it's not yet clear if that military incursion will be reinforced by more  cyber incursions targeting Ukraine and its allies. Fresh cyber attacks are thought to be imminent, as Russia's parallel army of cyber attackers stand ready to create havoc in networks and systems across the West.

Now, the European Union is activating its new cyber security team to help Ukraine fight off attacks from Russia.

The EU’s Cyber Rapid Response Team (CRRT) includes around 10 national cybersecurity officials of six European countries, Croatia, Estonia, Lithuania, the Netherlands, Poland and Romania, who can provide assistance to countries under cyber attack. The team falls under the EU's defense cooperation program PESCO  and this will be its first known deployment.

CRRT will allow the member states to help each other to ensure a higher level of cyber resilience and collectively respond to cyber incidents. CRRTs could be used to assist other member states, EU Institutions, CSDP operations as well as partners.  CRRTs will be equipped with a commonly developed deployable cyber toolkits designed to detect, recognise and mitigate cyber threats. Teams would be able to assist with training, vulnerability assessments and other requested support. The six “participating member states made a decision to activate the team,” said Margiris Abukevičius, vice minister at the Ministry of National Defence in Lithuania.

The move comes as Ukrainian cyber security services are on the receiving end of cyber threats and probing attacks as the conflict with Russia increases in scale.

Abukevičius said European officials will work out the details with Ukraine on how many and which experts it will devote to the operation. Sending the cyber team into Ukraine “is an option we’re considering,” Abukevičius said, adding it will depend on the type of support Ukraine requests.

A US cyber warfare officer has confirmed the increase and heightened threat of Russian cyber attacks against US companies, especially those dealing with the Pentagon or Ukrainian government entities, in the first steps to war between Ukraine and Russia. "Russia has targeted clear defense contractors, private companies that support the US military," the unnamed US cyber warfare officer told reporters. "So this is a normal tactic and we would expect this to be no different in the pre-hostilities for Ukraine. Specifically, any US contractors who are supporting Ukraine's government and military."

The Ukrainian government on February 18 asked for the EU’s support of cyber military officials, in a letter to EU leaders seen by POLITICO.

Kyiv’s Foreign Minister Dmytro Kuleba wrote to EU leaders that it would "welcome deployment to Kyiv" of the team of experts to evaluate "vulnerabilities of our key computer networks and systems." Kuleba also requested "additional technical equipment and software for strengthening the cybersecurity infrastructure" from the EU. EU foreign policy chief Josep Borrell recently told reporters that the EU “will send a mission of experts to help Ukraine to face cyber-attacks,” after meeting Kuleba at a meeting of European foreign affairs ministers in Brussels.

Kyiv's call for cyber reinforcements followed two major attacks on Ukrainian government networks in recent weeks.  Hackers have already posted messages on government websites and spread malware to wipe out data. Government websites were also taken down by an avalanche of traffic targeted at them.

The country suffered attacks on its elections in 2014 and on its energy grids in 2015 and 2016. The country was also the epicenter of a global malware outbreak known as "NotPetya" that quickly spread across the world, crippling multinationals like the Danish shipping giant Maersk, logistics giant FedEx and numerous others.

Both the European Union and NATO have has invested in projects schemes supporting Ukraine’s cyber security and digital infrastructure for several years. The country is seen as a front line in global cyber conflict and a testbed for intelligence services to deploy offensive cyber and espionage tools.

In Britain the Home Secretary and the national spy agency GCHQ have urged private companies and public services to take "pre-emptive measures" to defend themselves against an attack.

PESCO Europa:   European Defence Agency:     Politico:     Newsweek:   Telegraph:    Beckers Health IT:     

BankInfoSecurity:

You Might Also Read: 

NATO & Ukraine Agree Deeper Cyber Co-operation:
 

« Financial Services, Online Banking & Cyber Security
New Tools To Simulate Electronic Warfare »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Ripjar

Ripjar

Ripjar is a global company of talented technologists, data scientists and analysts designing products that will change the way criminal activities are detected and prevented.

TWNCERT

TWNCERT

TWNCERT is the National Computer Emergency Response Team of Taiwan.

Spanish National Cybersecurity Institute (INCIBE)

Spanish National Cybersecurity Institute (INCIBE)

INCIBE undertakes research, service delivery and coordination for building cybersecurity at the national and international levels.

Sepior

Sepior

Our vision is to make Sepior the leading provider of cloud-encryption software in the world.

Zanasi & Partners

Zanasi & Partners

Zanasi & Partners is a security research and advisory company active in the EU and MENA areas. Services focus on technology solutions.

Red Canary

Red Canary

Red Canary continuously monitors and analyzes your endpoints, users, and network activity in search of threatening behaviors, patterns, and signatures.

SQNetworks

SQNetworks

SQNetworks provides a full range of cybersecurity consultancy, services and solutions.

Consortium for Information & Software Quality (CISQ)

Consortium for Information & Software Quality (CISQ)

The mission of CISQ is to develop international standards for software quality and to promote the development and sustainment of secure, reliable, and trustworthy software.

Cycode

Cycode

Cycode is the industry’s first source code control, detection, and response platform.

Startup Capital Ventures

Startup Capital Ventures

Startup Capital Ventures is an early stage venture capital firm with a focus on FinTech, Cloud/SaaS, Security, Healthcare IT, and IoT.

Porto Research, Technology & Innovation Center (PORTIC)

Porto Research, Technology & Innovation Center (PORTIC)

PORTIC brings together several research centers and groups from P.PORTO in a single space, forming a superstructure dedicated to research, technology transfer, innovation and entrepreneurship.

Fifosys

Fifosys

Fifosys is a professional technology infrastructure specialist, delivering a broad portfolio of high quality technical and strategic managed services.

MAXXeGUARD Data Safety

MAXXeGUARD Data Safety

MAXXeGUARD: The High Security Shredder. MAXXeGUARD easily destroys hard disks up to the highest security levels as well as other digital data carriers like SSD’s, LTO’s, USB’s, CD’s etc.

Spotit

Spotit

Spotit offers a wide-ranging portfolio of technologies and services, from consultancy, assessments and pentesting to the set up of completely new security and network infrastructures.

Verica

Verica

Verica uses chaos engineering to make systems more secure and less vulnerable to costly incidents.

Fullstack Academy

Fullstack Academy

A trailblazer in bootcamp education, Fullstack Academy prepares students for fulfilling careers in tech through our NYC campus, online learning, and university partnerships.