Korrespondent.net

Korrespondent.net operates as an entity headquartered within Ukraine. The organization experienced a significant cybersecurity incident on June 27, 2017, when it was impacted by the destructive NotPetya malware attack. This attack originated through a compromised update mechanism associated with widely used tax accounting software prevalent in Ukraine. The malware, while masquerading as ransomware, was fundamentally designed to cause irreversible damage to infected systems rather than extort payment. The attack inflicted severe operational disruption across Korrespondent.net and numerous other Ukrainian entities.

The NotPetya incident resulted in permanent data destruction and crippled critical infrastructure functions for Korrespondent.net and other affected organizations, including major banks, government ministries, energy providers, and transportation systems; disruptions were notably reported at sensitive facilities like the Chernobyl Nuclear Power Plant. Ukrainian authorities, supported by international cybersecurity firms, attributed this coordinated attack to Russian military actors. This attribution was based on observed similarities to prior cyber operations linked to Russian intelligence services. The attack propagated beyond Ukraine's borders via interconnected corporate networks, causing billions of dollars in financial losses globally among multinational corporations inadvertently caught in the event. Korrespondent.net was one identifiable Ukrainian organization significantly harmed during this widespread cyber assault.