Insights For Success

Strategy, Innovation, Leadership and Security

Russia

Intro to Ukraine (Ukraine 101)

GeneralEdward Kiledjian

What is the Ukrainian language?

The Ukrainian language is a member of the East Slavic branch of the Slavic languages. It is the official state language of Ukraine and is spoken by approximately 37 million people. Ukrainian is written in the form of the Cyrillic alphabet.

Intro to Ukraine

Ukraine is a country located in Eastern Europe. Russia borders it to the east and north, Belarus to the north, Poland, Slovakia and Hungary to the west, Romania and Moldova to the southwest and the Black Sea and Sea of Azov to the south. The territory of modern Ukraine has been inhabited since 32,000 BC.

During the Middle Ages, the area was a key center of East Slavic culture, with the powerful state of Kievan Rus' forming the basis of Ukrainian identity. Following its fragmentation in the 13th century, the territory was contested, ruled and divided by a variety of powers, including Lithuania, Poland, Austria-Hungary, the Ottoman Empire and Russia. A Cossack republic emerged and prospered during the 17th and 18th centuries but was destroyed by the Russian Empire in the 19th century.

Following World War II, Ukraine was annexed by the Soviet Union as one of its constituent republics, with a distinct Ukrainian culture and language maintained under Russian rule. During the collapse of the Soviet Union, Ukraine declared independence in 1991, although the international community did not fully recognize this act until 1994. Since then, Ukraine has experienced a period of significant internal political and economic upheaval, culminating in the Euromaidan revolution in 2013, which led to the removal of Yanukovych and his government.

These events precipitated the annexation of Crimea by Russia in March 2014 and the War in Donbas in April 2014. On 1 January 2016, Ukraine applied the economic part of the Deep and Comprehensive Free Trade Area with the European Union.

Ukraine's model of government is a semi-presidential republic, whereby the President of Ukraine is head of state, and the Prime Minister of Ukraine is head of government. The current president is Volodymyr Zelensky, who took office on 20 May 2019.

Zelensky's victory in the presidential election was widely seen as a sign of change and hope for Ukraine, with many voters eager for new leadership after years of corruption and mismanagement under previous presidents. Zelensky had pledged to tackle corruption and reduce Ukraine's dependence on Russia.

What is the Ukrainian legal system?

The Ukrainian legal system is based on the civil law system, strongly influenced by German and Soviet legal traditions. The Constitution of Ukraine is the supreme law of the country. The judiciary is independent and consists of a hierarchy of courts, with the Supreme Court of Ukraine at the top.

How are Ukraine elections run?

The President of Ukraine is elected by popular vote for a five-year term. The president appoints the Prime Minister with the approval of the parliament. The parliament (Verkhovna Rada) is unicameral and consists of 450 deputies elected by proportional representation for a five-year term.

What types of parties are there in Ukraine?

The political landscape in Ukraine is fragmented, with many small parties and no single party holding a majority in parliament. The two largest parties are President Zelensky's Servant of the People party and the Opposition Platform - For Life party. Other notable parties include Batkivshchyna, Fatherland, and the Radical Party.

What does Ukraine export?

Ukraine is a large producer and exporter of agricultural products, mainly grains such as corn and wheat. It is also a significant producer of minerals, including iron ore, coal, manganese, chromium, natural gas, and oil. Manufactured goods exports include metallurgy products, transportation equipment, and machinery.

Who are Ukraine's biggest trading partners?

Russia is (or was) Ukraine's largest trading partner, followed by Germany, China, and Turkey. Trade between Ukraine and Russia has been significantly reduced since 2014 due to the War in Donbas and the annexation of Crimea by Russia. However, trade between Ukraine and other countries has increased during this time.

MacPaw releases SpyBuster ti detect Russian apps and stop communication with Russian Servers

GeneralEdward Kiledjian

MacPaw is a Ukrainian software developer known primarily for its CleanMyMacX and SetApp applications. In addition, the team has developed a new app called SpyBuster. SpyBuster is a Mac-only application that allows users to determine if any applications on their computers are of Russian (or Belarussian) origin or if their data is stored on Russian servers.

Knowing about data stored in Russia is important since Russian authorities can compel local companies to hand over all data (voice calls, data, metadata, etc.) created or stored on Russian servers for the last six months. Metadata must be stored for three years.

SpyBuster can also act as an active firewall blocking all communications with Russian and Belarussian servers.

The scans are performed locally, and the data does not appear to be shared with MacPaw.

SpyBuster is a free software application.

Korea is targeting Russia via espionage campaign called Sanny

InfoSecEdward Kiledjian

Anytime I talk about cyber-espionage, the first reaction most people have is that China must be behind the effort. The reality is that most countries have cyber-espionage capabilities and they use it to further their own interests.

My eyes widened and my ear perked up when I read a research paper by FireEye about a possible cyber-espionage campaign against Russian industry by Korea. I say Korea because FireEye hasn’t clarified whether the source is North or South Korea. It seems most companies being targeted as in space research, IT, education and telecommunication.

A FireEye researcher has said

“Though we don’t have full concrete evidence, we have identified many indicators leading to Korea as a possible origin of attack." - Ali Islam

The evidence thus far shows that: 

  • the SMTP mail server is in Korea
  • the Command and Control servers are in Korea
  • The  fonts used are “Batang” and “KP CheongPong” , which are Korean

Based on the evidence, this seems to be a well organized and sophisticated attack.  Ali Islam added

"Once you have that information, you have access to employees' emails even from outside, and that means a lot of official information," Islam says. "It also steals other accounts credentials, all user passwords stored by Firefox for auto login."

In true internet style, the infection is carried by a phishing attack claiming to be a meeting of the “Association of Southeast Asian Nations” and exploits a Word vulnerability to steal its data.

You can see a sample of the document (in Cyrillic) below

Click on any images in this post for a larger full size view

All of the collected data is sent to a public message board where it can be seen by anyone without authentication. This means any data that is stollen can be retrieved by anyone.