Cyber Incident Victim: Міністерство освіти і науки України
Date:
Feb 2024
Location:
Ukraine
Summary
The official website of the Ministry of Education and Science of Ukraine was paralyzed by a Russian cyberattack, causing service disruption. The ministry acknowledged the attack and worked on a resolution, subsequently reporting that the site was restored to operation. This event aligns with a significant rise in cyberattacks targeting Ukrainian entities, including recent incidents affecting other national services.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On February 7, 2024, the official website of the Ministry of Education and Science of Ukraine became non-functional, an outage the Ministry directly attributed to a Russian cyberattack. The initial public communication, posted on the Ministry's Facebook page, stated the site "does not work due to the Russian kíberataki" and confirmed that work was underway to resolve the issue, with promises to inform the public upon restoration. This disruption represented a direct hit on a key governmental portal responsible for disseminating critical information regarding Ukraine's education system. The incident was reported by Ukrainska Pravda, which cited the Ministry as its source and used the headline "Russian cyberattack paralyses Ukraine's Education Ministry website." The Ministry's message to the public was clear: they were aware of the cause and actively engaged in remediation efforts, framing the event within the ongoing context of hostile cyber operations against Ukrainian state infrastructure.
The attribution of the attack was later specified by Oksen Lisovyi, the Minister of Education and Science, who explicitly stated the website was attacked by Russian hackers. This public naming of the perpetrator aligned with Ukraine's consistent narrative regarding the source of sustained cyber aggression. The incident occurred against a backdrop of heightened cyber conflict, as noted in the reporting which referenced a 15.9% increase in cyber-attacks in Ukraine during the previous year. Furthermore, the article contextualized this specific attack by recalling a large-scale cyber incident in late January 2024 that had disrupted multiple major Ukrainian state services, including Naftogaz and Ukrzaliznytsia, following an attack on the Parkovyi data centre. By the same day, February 7, the Ministry issued an update confirming the website was once again operational, stating "✅ UPD: the site is working." The primary impact was the temporary unavailability of the Ministry's official online presence, with the response actions consisting of technical remediation and transparent public communication through social media channels to manage citizen expectations and confirm the restoration of service.