Ukraine Thread

**Philippus Flavius Homovallumus** · 07-10-2017, 15:22

I'm really surprised nobody picked this up.

So, the Attack in Ukraine was not, in fact, Ransomware but a good old fashioned virus attack. Dubbed "NotPetya" because it masquerades as the Petya Ransomeware the virus destroys data with virtually no hope of recovery. Apparently is found its way into the wild via a backdoor malicious inserted into a Tax App widely used in Ukraine.

Rather more interestingly, the makers of the virus apparently had access to the NSA's Eternal Blue exploit weeks before it was released by the "Shadow Brokers".

This suggests some link between those who promulgated NotPetya and the Shadow Brokers themselves. The most likely explanation is that both are Russian, possibly state sponsored, and their aim is to further Russian political goals, namely crippling Ukraine and discrediting the US. If so this means by extension that Russia may be indirectly responsible for WannaCry which crippled the NHS back in March.

https://arstechnica.co.uk/security/2...-app-backdoor/

https://arstechnica.co.uk/security/2...r-public-leak/

**Sarmatian** · 07-10-2017, 17:07

Let me see if I follow your logic - since NotPetya originated in Ukraine, it must have been planted by Russians. Since it was based on Shadow Brokers code possibly before it was released to the public, it means that Shadow Brokers are Russian. Since they are Russian, it is quite conceivable that they are controlled by the Russian state. Since the code was acquired from NSA, it means that NSA is under Russian contr...
No wait, you still didn't get that far.

Do follow that train of thought, I'm interested where you're gonna end up.

**Gilrandir** · 07-11-2017, 12:54

Originally Posted by Sarmatian

Let me see if I follow your logic - since NotPetya originated in Ukraine, it must have been planted by Russians.

Who said it originated in Ukraine? It hit Ukraine heavier than other countries (about 75% of all attacks were against Ukrainian computers). But from what I heard it was developed (= originated) in the USA.

**Sarmatian** · 07-11-2017, 14:04

Originally Posted by Gilrandir

Who said it originated in Ukraine?

Originated, as in, first affected devices were in Ukraine.

**Gilrandir** · 07-18-2017, 11:33

New information on MH 17: on the eve of the shooting down Russia closed its airspace:
https://en.lb.ua/news/2017/07/17/414..._airspace.html

**Fragony** · 07-19-2017, 11:43

It was probably a horrible mistake no matter who did it, people just make them. Maybe I am really naive, but I can't believe it was done on purpose

**Seamus Fermanagh** · 07-19-2017, 15:43

Originally Posted by Fragony

It was probably a horrible mistake no matter who did it, people just make them. Maybe I am really naive, but I can't believe it was done on purpose

I suspect that you are correct. However, I believe prosecutors seek to pursue charges that it was a reckless/negligent act by those who fired and that they are therefore legally culpable.