Ukraine

On 27 June 2017 a destructive malware campaign — publicly branded NotPetya — erupted from Ukraine and spread globally within hours, masquerading as ransomware while in reality being a pure wiper designed to maximise damage. US CISA, UK NCSC, and Five Eyes partners attributed the attack to Russian GRU Unit 74455 (Sandworm) in February 2018; the US DOJ indicted six GRU officers in October 2020. The supply-chain entry point was a trojanised update to M.E.Doc, a Ukrainian accounting software package used by roughly 80 percent of Ukrainian businesses. Global losses exceeded $10 billion, making it the costliest cyberattack in recorded history.

On 23 December 2015, cyberattackers disrupted electricity supply to approximately 230,000 customers in Ukraine's Ivano-Frankivsk Oblast for one to six hours — the first publicly confirmed successful cyberattack on civilian power grid infrastructure anywhere in the world. US-CERT (IR-ALERT-H-16-056-01), the Ukrainian SBU, and security researchers attributed the attack to Sandworm (GRU Unit 74455), who used spear-phishing to compromise three Ukrainian regional electricity distribution companies, deployed the BlackEnergy malware and KillDisk wiper, and launched a telephony denial-of-service to hamper restoration. A follow-on attack on 17 December 2016 (Industroyer/Crash Override) struck the Kiev transmission substation.

Malaysia Airlines Flight MH17 was shot down over eastern Ukraine on 17 July 2014, killing all 298 people on board. The Dutch Safety Board (October 2015) determined the aircraft was destroyed by detonation of a 9N314M warhead carried by a 9M38 Buk surface-to-air missile. The Joint Investigation Team (JIT) concluded in 2016 and 2019 that the Buk launcher belonged to the 53rd Anti-Aircraft Missile Brigade of the Russian Armed Forces based in Kursk. Russia has consistently denied involvement. In November 2022, a Dutch court convicted three individuals — two Russians and one Ukrainian — in absentia of murder. The verdict is confirmed by multiple independent investigations.