Most cyber threats in Ukraine remain unnoticed, with only about 20% becoming public knowledge.
This was stated by the founder of AmonSul and co-founder of a major Ukrainian cybersecurity community, Sergey Kharyuk, in an interview.
"In my opinion, for every incident that is publicly known, there are at least four that go unreported. This is especially true for the private sector," he noted.
Kharyuk cited an example where one of the bots collecting personal data displayed information that some of the data was allegedly "leaked" from a pharmacy network. Although the leak has not been officially confirmed, the existence of such data suggests a possible breach.
Regarding whether the government should publicly report cyber incidents, Kharyuk emphasized that the situation is complex, especially during wartime. If it concerns defense forces, public disclosure may be inappropriate. However, for the civilian sector, transparency can help other organizations learn from past mistakes.
"For instance, 'Kyivstar' only acknowledged that they had been hacked, but real collaboration began only after the UZ breach. At that point, the operator's specialists came to assist with recovery. But this is akin to offering help after someone has broken a leg," he added.
To learn more about who is behind the largest cyberattacks and how Russian hackers operate, read the interview: Who is winning the Russian-Ukrainian cyberwar and are elections possible in 'Diia'? An interview with a 'white hat' hacker.