Many cyberattacks in Ukraine remain undisclosed, with only about 20% becoming public knowledge.

This was shared by Serhiy Kharyuk, founder of AmonSul and co-founder of Ukraine's largest cybersecurity community, in an interview with EP.

“In my assessment, for every incident that is publicly discussed, there are at least four that go unnoticed. This is particularly true for the private sector,” he stated.

Kharyuk provided an example where a bot collecting personal dossiers revealed that part of the data was allegedly “leaked” from a pharmacy network. Although there was no official confirmation of the leak, the mere appearance of such data indicates a probable breach.

Regarding whether the government should publicly disclose cyber incidents, Kharyuk emphasized that the situation is ambiguous, especially during wartime. When it comes to defense forces, public disclosure might be inappropriate. However, in the case of the civilian sector, transparency allows other organizations to learn from past mistakes.

“For instance, Kyivstar only acknowledged their breach, but real collaboration started only after the incident with UZ. Then the operator's specialists came to assist with recovery. But that’s like helping after someone has broken their leg,” he added.

To learn more about who is behind the largest cyberattacks and how Russian hackers operate, read the interview: “Who is winning the Russian-Ukrainian cyberwar and are elections possible in Diia?”