Last year, the CERT-UA team at the State Service for Special Communications, which responds to cyber incidents, processed 5,927 cyber incidents. This is 37.4% more than in 2024, when there were 4,315 attacks. There is a slight change in the focus of hackers, but their main enemy goals remain unchanged.
Last year, the CERT-UA team at the State Service for Special Communications, which responds to cyber incidents, processed 5,927 cyber incidents. This is 37.4% more than in 2024, when there were 4,315 attacks. There is a slight change in the focus of hackers, but their main enemy goals remain unchanged.
Most often, attackers attack:
An increase in enemy interest in the IT sector (75 incidents) and the medical industry (95 incidents) was also recorded.
"The increase in the total number of cyber incidents is associated not only with the increase in the intensity of attacks, but also with the increase in the capabilities of cyber defenders to detect them and increase the cyber awareness of the population," cyber experts emphasized.
Analysis of incident types indicates a change in attacker tactics towards more widespread malware distribution and social engineering. The most common methods are:
"The enemy continues to scale operations, using both automated mass mailings and targeted attacks by professional groups such as UAC-0050, UAC-0150, and UAC-0010. This indicates that the intensity of the confrontation in cyberspace is only increasing," CERT-UA added.
According to cyber experts, to achieve these goals, attackers are increasingly using malicious software for covert data collection. These types of attacks, along with phishing, will remain the most widespread tools of the aggressor.
