IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack

Italian police thwart cyber attacks on Eurovision's voting systems from the Russian-linked hacker group Killnet after the same group targeted public sector institutions days earlier

Russian-linked hackers have claimed to have disrupted the infrastructure of Italy’s State Police anti-cyber crime arm after it thwarted hacking attempts on the Eurovision Song Contest.

Hackers from the Killnet group announced in the early hours of Monday morning that claims made by Italian State Police referred to the disruption of cyber attacks over the weekend were false.

In the same announcement, Killnet also “declared war” on 10 countries, including the “deceitful police of Italy”, and appeared to mock the authority, claiming Killnet was responsible for the seemingly offline website of the police’s cyber department.

The website of Italy’s anti-cyber crime organisation, Cnaipic, was involved in the prevention of Russian-linked hacking attempts on the Eurovision song contest’s voting systems, Italian State Police said, and at the time of writing, its website also appears to be down.

Cnaipic assigned officers to work 24 hours a day in a unit dedicated to protecting Eurovision’s infrastructure which was ultimately attacked by the Russian-linked Killnet and Legion hacking groups.

Italian State Police confirmed its response on Sunday, saying they were able to “neutralise and repel the attacks”.

“Various computer attacks of a DDoS were nature directed at network infrastructure during the voting operations and the singing performance were mitigated in collaboration with the ICT Rai and Eurovision TV management,” said the State Police, as reported by ANSA. “Identified by the Cnaipic of the Postal Police, numerous 'PC-zombies' were used for the cyber attack.”

This year’s Eurovision Song Contest was held in Turin, Italy and saw Kalush Orchestra from Ukraine was crowned the champion after many predicted the country to win following Russia’s invasion.

Authorities said the distributed denial of service (DDoS) attacks were prevented during the competition’s grand final and during the final voting stages.

State Police also said they scoured the hacking groups’ associated Telegram channels to glean intelligence that led to the prevention of other incidents and the identification of the hackers’ location.

Sustained Killnet attacks

Days before the Eurovision Song Contest, Italian authorities reported, via ANSA, that the same Killnet hackers had targeted the websites of the Italian National Health Institute and Automobile Club d'Italia, a national drivers' association.

The Italian senate’s website was also targeted in the attack which saw hackers take down web pages for roughly an hour. 

Related Resource

Security awareness training strategies for account takeover protection

Why you need an inside-the-perimeter strategy for internal threats

Security awareness training strategies for account takeover protection - whitepaper from MimecastFree download

Italian senate speaker Elisabetta Casellati said via Twitter that no damage was sustained from the attack on the senate.

“Thanks to the technicians for the immediate intervention,” she said. “These are serious episodes, which should not be underestimated. We will continue to keep our guard up.”

Killnet has been a group on the watchlist of international cyber crime authorities for some time, with the Five Eyes intelligence alliance previously releasing a joint cyber security advisory naming Killnet as one of the biggest threats to critical infrastructure.

Among other recent attacks, the alliance pointed to a March DDoS attack on Bradley International Airport in Connecticut as previous work carried out by the group which has also released a video pledging support for Russia. 

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Most Popular

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
The UK's best cities for tech workers in 2022
Business strategy

The UK's best cities for tech workers in 2022

24 Jun 2022
Carnival hit with $5 million fine over cyber security violations
cyber security

Carnival hit with $5 million fine over cyber security violations

27 Jun 2022