Cyberwarfare Strikes Ukrainian Army: Malware-Laden Fake Military Apps Target Soldiers

In the midst of escalating tensions between Kyiv and Moscow, a new battlefield has emerged for cyber warfare: the pockets of Ukrainian army personnel. Cyber attackers have recently targeted Ukrainian military servicemen by posing as legitimate sources and luring them into downloading fake military apps embedded with malware. The goal was to steal authentication credentials and GPS coordinates from soldiers’ phones, potentially endangering lives on the battlefield.

The Ukrainian Computer Emergency Response Team (CERT-UA) collaborated with key military units to identify and neutralize two cyberattacks aimed at infiltrating mobile devices of military personnel. Attackers distributed fraudulent links disguised as legitimate apps for critical military systems, including the AI-based GRISELDA system and the military tracking system known as “Eyes.”

Hackers have evolved their tactics, shifting from targeting networks to exploiting the devices soldiers carry. By using secure messaging apps like Signal to distribute malicious links mimicking official military websites, attackers were able to trick soldiers into downloading malware disguised as mobile applications for GRISELDA and Eyes.

The malicious software, known as HYDRA, was designed to steal data and remotely access infected devices, potentially compromising sensitive military information. The attack on the Eyes tracking system posed an additional threat by allowing hackers to steal login credentials and GPS coordinates, enabling real-time tracking of soldiers.

The incident underscores the critical importance of mobile device security for military personnel. As warfare increasingly moves into the digital realm, nations must prioritize cybersecurity measures to protect against sophisticated cyber threats targeting mobile devices. The swift response and collaboration between CERT-UA, military units, and private sector cybersecurity specialists highlight the need for proactive defense mechanisms in the face of evolving cyber warfare tactics.