CYBERATTACK ON THE ADMINISTRATION OF THE REPUBLIC OF SLOVENIA FOR CIVIL PROTECTION AND DISASTER RELIEF

Authors

  • Boštjan Tavčar Ministrstvo za obrambo, Uprava RS za zaščito in reševanje, Ljubljana

Abstract

This article describes a typical flow of cyberattacks using ransomware, which can be rented as a service on the Dark Web. It also describes the course of a cyberattack on the information system of the Administration of the Republic of Slovenia for Civil Protection and Disaster Relief, the actions taken during and after the attack, and the elimination of the consequences of the attack. An assessment of the actual threat is given. Finally, an analysis of the data collected on the Dark Web is presented.

References

New Golang Ransomware Agenda Customizes Attacks, Trend Micro, 25. 8. 2022. https://www.trendmicro.com/en_us/research/22/h/new-golang-ransomware-agenda-customizes-attacks.html, 4. 6. 2023.

Ransomware as a Service (RaaS), Trend Micro. https://www.trendmicro.com/vinfo/us/security/definition/ransomware-as-a-service-raas, 4. 6. 2023.

Why Ransomware-as-a-Service (RaaS) is Exploding as a Cyber Threat, Hitachi Systems Security inc. https://hitachi-systems-security.com/the-emergence-of-ransomware-as-a-service-raas/, 4. 6. 2023.

Ransomware-as-a-Service: An infamously lucrative business model, Conscia. https://conscia.com/blog/ransomware-as-a-service-an-infamously-lucrative-business-model/, 4. 6. 2023

Downloads

Published

19-01-2024

Issue

No. 37 (2023): Ujma

Section

Nevarnosti in ogroženost

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.

The articles are made available to the public under Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0).