Cyber Incident Victim: Energoatom

On August 16, 2022, Ukraine’s state nuclear power company Energoatom reported a cyber attack targeting its website. The incident involved Russian-based hackers identified as the "People’s Cyber Army," who launched a sustained three-hour assault characterized by bot-driven traffic. According to Energoatom’s public statement, the attackers deployed 7.25 million bot users to simulate hundreds of millions of views of the company’s main webpage. This activity aimed to overwhelm the site through volumetric traffic, a common distributed denial-of-service (DDoS) tactic. The attack timeframe coincided with ongoing military hostilities between Ukraine and Russia, though the company did not specify the exact start time or technical indicators of compromise. No data breaches, malware deployments, or physical disruptions to nuclear facilities were disclosed in connection with the incident.

Energoatom assessed that the attack did not significantly affect website operations, indicating successful mitigation or resilience measures. The company’s statement emphasized operational continuity despite the high-volume bot activity, though it did not detail specific defensive actions taken during or after the event. No collateral impacts on energy generation, radiation safety systems, or internal corporate networks were reported. The incident remained confined to the public-facing website layer, with no evidence of deeper network infiltration or secondary attack vectors. Energoatom attributed responsibility directly to the Russian-aligned threat group without providing additional forensic evidence or third-party corroboration. The event underscored persistent cyber threats to Ukrainian critical infrastructure entities amid the broader conflict but resulted in no acknowledged service outages or long-term operational consequences.