The team of the Institute of Cyber Warfare Research presents three studies created for the National Security and Defense Council of Ukraine (NSDC) and the National Coordination Center for Cybersecurity (NCCC) with support from the U.S. Agency for International Development (USAID) through the USAID Project «Cybersecurity of Ukraine’s Critical Infrastructure.» These studies cover such important topics as the ENISA assessment of Ukraine’s national cyber capabilities, analysis of cyber threats in 2023, and experience in countering cyber warfare.
These studies are aimed at providing up-to-date and practical information to decision-makers in the field of cyber defense of Ukraine, contributing to the improvement of the country’s cyber resilience.
1. Assessment of National Cyber Capabilities: What is the Level of Cybersecurity Maturity of Ukraine According to the ENISA Methodology?
The study, based on an adapted ENISA Methodology, assesses Ukraine’s cyber maturity and identifies key areas for improving national cyber capabilities.
The study highlights significant progress in the development of national cyber incident response plans, research and development activities, protection of critical information infrastructure, and countering cybercrime.
At the same time, challenges remain in the areas of providing incentives for public-private partnerships and protecting data privacy. The study also identifies shortcomings and recommendations for improving cybersecurity aimed at enhancing Ukraine’s cyber resilience and its integration into European cyberspace.
2. Expectations and Reality of Cyber Warfare: What Ukraine Faced and How it Responded to Cyber Aggression.
The study analyzes the experience of Ukrainian cyber professionals in countering Russian cyberattacks after February 24, 2022. The study found that previous expectations of the scale and destructiveness of the attacks were overestimated, and the actual consequences were less catastrophic.
Despite the general uncertainty about preparedness for attacks, Ukrainian organizations were able to effectively counteract due to preliminary measures and coordination with international and private partners. The role of cyber volunteers and international technical assistance was also crucial.
The study also emphasizes the need for further development of cyber literacy, private sector engagement, and improvement of coordination procedures.
3. Cybersecurity Threat Landscape of Ukraine in 2023
The study “Cybersecurity Threat Landscape of Ukraine in 2023” analyzes the cyber threats faced by Ukraine during the full-scale war — the main threat was the activity of hacker groups affiliated with Russian intelligence agencies that attacked government institutions, defense sector, telecommunications, energy and media. The report shows an increase in the number of cyberattacks, especially DDoS attacks, phishing and malware. Cybercriminals actively used social engineering, online fraud, and account compromise. The study emphasizes the importance of international cooperation and the development of cyber defense to increase Ukraine’s resilience to cyber threats.
