Russia military intelligence agency (GRU)-connected hackers suspected of launching BadRabbit cyberattack against Ukraine
On October 24, 2017, a wave of Cyber Operations crippled Kyiv’s subway ticketing system, Odessa international airport’s operating systems, and three Russian media outlets. Ukraine’s Computer Emergency Response Team (CERT) released a statement calling the ransomware attack, identified as BadRabbit, a threat to Ukrainian national security and urged Ukrainian companies to remain on high alert. Radio Free Europe/Radio Liberty reported that the Ukrainian government suspected Russian state involvement. Reuters concluded the same Russian military intelligence agency (GRU)-connected hackers who conducted the NotPetya ransomware attack in June 2017 also likely orchestrated the BadRabbit ransomware attack.