Cyberattacks Accompany Russian Military Assault on Ukraine

A Ukrainian soldier talks with her comrades sitting in a shelter at the line of separation between Ukraine-held territory and rebel-held territory near Svitlodarsk, eastern Ukraine, Wednesday, Feb. 23, 2022. (AP Photo/Evgeniy Maloletka)
A Ukrainian soldier talks with her comrades sitting in a shelter at the line of separation between Ukraine-held territory and rebel-held territory near Svitlodarsk, eastern Ukraine, Wednesday, Feb. 23, 2022. (AP Photo/Evgeniy Maloletka)
TT

Cyberattacks Accompany Russian Military Assault on Ukraine

A Ukrainian soldier talks with her comrades sitting in a shelter at the line of separation between Ukraine-held territory and rebel-held territory near Svitlodarsk, eastern Ukraine, Wednesday, Feb. 23, 2022. (AP Photo/Evgeniy Maloletka)
A Ukrainian soldier talks with her comrades sitting in a shelter at the line of separation between Ukraine-held territory and rebel-held territory near Svitlodarsk, eastern Ukraine, Wednesday, Feb. 23, 2022. (AP Photo/Evgeniy Maloletka)

The websites of Ukraine's defense, foreign and interior ministries were unreachable or painfully slow to load Thursday morning after a punishing wave of distributed-denial-of-service attacks as Russia struck at its neighbor, explosions shaking the capital of Kyiv and other major cities.

In addition to DDoS attacks on Wednesday, cybersecurity researchers said unidentified attackers had infected hundreds of computers with destructive malware, some in neighboring Latvia and Lithuania, said The Associated Press.

Asked if the denial-of-service attacks were continuing Thursday morning, senior Ukrainian cyber defense official Victor Zhora did not answer. “Are you serious?" he texted. "There are ballistic missiles here.”

"This is terrible. We need the world to stop it. Immediately,” Zhora said of the offensive that Russian President Vladimir Putin announced in the pre-dawn hours.

Officials have long expected cyber attacks to precede and accompany any Russian military incursion. The combination of DDoS attacks, which bombard websites with junk traffic to render them unreachable, and malware infections hewed to Russia's playbook of wedding cyber operations with real-world aggression.

ESET Research Labs said it detected a previously unseen piece of data-wiping malware Wednesday on “hundreds of machines in the country.” It was not clear how many networks were affected.

“With regards whether the malware was successful in its wiping capability, we assume that this indeed was the case and affected machines were wiped,” said ESET research chief Jean-Ian Boutin. He would not name the targets but said they were “large organizations.”

ESET was unable to say who was responsible.

Symantec Threat Intelligence detected three organizations hit by the wiper malware — Ukrainian government contractors in Latvia and Lithuania and a financial institution in Ukraine, said Vikram Thakur, its technical director. Both countries are NATO members.

“The attackers have gone after these targets without much caring for where they may be physically located,” he said.

All three had “close affiliation with the government of Ukraine,” said Thakur, saying Symantec believed the attacks were “highly targeted.” He said roughly 50 computers at the financial outfit were impacted, some with data wiped.

Asked about the wiper attack on Wednesday, Zhora had no comment.

Boutin said the malware’s timestamp indicated it was created in late December.

“Russia likely has been planning this for months, so it is hard to say how many organizations or agencies have been backdoored in preparation for these attacks,” said Chester Wisniewski, principal research scientist at the cybersecurity firm Sophos. He guessed the Kremlin intended with the malware to “send the message that they have compromised a significant amount of Ukrainian infrastructure and these are just little morsels to show how ubiquitous their penetration is.”

Word of the wiper follows a mid-January attack that Ukrainian officials blamed on Russia in which the defacement of some 70 government websites was used to mask intrusions into government networks in which at least two servers were damaged with wiper malware masquerading as ransomware.

Cyberattacks have been a key tool of Russian aggression in Ukraine since before 2014, when the Kremlin annexed Crimea and hackers tried to thwart elections. They were also used against Estonia in 2007 and Georgia in 2008. Their intent can be to sow panic, confuse and distract.

Distributed-denial-of-service attacks are among the least impactful because they don’t entail network intrusion. Such attacks barrage websites with junk traffic so they become unreachable.

The DDoS targets Wednesday included the defense and foreign ministries, the Council of Ministers and Privatbank, the country’s largest commercial bank. Many of the same sites were similarly knocked offline Feb. 13-14 in DDoS attacks that the US and UK governments quickly blamed on Russia’s GRU military intelligence agency
Wednesday’s DDoS attacks appeared less impactful than the earlier onslaught — with targeted sites soon reachable again — as emergency responders blunted them. Zhora’s office, Ukraine’s information protection agency, said responders switched to a different DDoS protection service provider.

Doug Madory, director of internet analysis at the network management firm Kentik Inc., recorded two attack waves each lasting more than an hour.
A spokesman for California-based Cloudflare, which provides services to some of the targeted sites, said Wednesday that DDoS attacks in Ukraine had been until then sporadic but on the rise in the past month but “relatively modest compared to large DDoS attacks we’ve handled in the past.”

The West blames Russia’s GRU for some of the most damaging cyberattacks on record, including a pair in 2015 and 2016 that briefly knocked out parts of Ukraine’s power grid and the NotPetya “wiper” virus of 2017, which caused more than $10 billion of damage globally by infecting companies that do business in Ukraine with malware seeded through a tax preparation software update.

The wiper malware detected in Ukraine this year has so far been manually activated, as opposed to a worm like NotPetya, which can spread out of control across borders.



China Urges US to Handle Taiwan Issue ‘with Utmost Caution’

 US Secretary of State Marco Rubio (L) shakes hands with China's Foreign Minister Wang Yi in Munich, on February 12, 2026. (AFP/Getty Images)
US Secretary of State Marco Rubio (L) shakes hands with China's Foreign Minister Wang Yi in Munich, on February 12, 2026. (AFP/Getty Images)
TT

China Urges US to Handle Taiwan Issue ‘with Utmost Caution’

 US Secretary of State Marco Rubio (L) shakes hands with China's Foreign Minister Wang Yi in Munich, on February 12, 2026. (AFP/Getty Images)
US Secretary of State Marco Rubio (L) shakes hands with China's Foreign Minister Wang Yi in Munich, on February 12, 2026. (AFP/Getty Images)

Chinese Foreign Minister Wang Yi urged the US to handle matters related to Taiwan with "the utmost caution", during a phone call with US Secretary of State Marco Rubio on Tuesday, Wang's ministry said on Wednesday.

"A slight move on the Taiwan issue could affect the whole situation," Wang said, adding that ‌China and ‌the US should work to manage ‌all ⁠kinds of risks, ⁠according to an official Chinese summary of the phone conversation.

The US State Department did not immediately respond to a Reuters request for comment.

The call followed a mid-May summit between Chinese President Xi ⁠Jinping and US President Donald ‌Trump in Beijing, ‌where Xi told Trump that mishandling the countries' ‌disagreements over Taiwan could push China-US relations ‌into an "extremely dangerous place".

Beijing claims the democratically governed island as its own territory and refuses to rule out military force to gain ‌control of it. Taipei rejects Beijing's claims, and the United States ⁠is bound ⁠by law to provide Taipei with the means to defend itself.

Wang said the US and China should work to build a "constructive, strategically stable relationship".

"Both sides should eliminate disruptions, overcome obstacles, and continue firmly along this correct direction," Wang said.

The Chinese foreign ministry said Wang and Rubio agreed to "continue maintaining communication in a flexible manner".


‘Thought They’d Never Be Caught’: The Strike That Killed Iran’s Ali Khamenei

An Iranian man rides a motorbike past a large-scale poster of late Iranian Supreme Leader Ali Khamenei displayed along a highway, in Tehran, Iran, 01 July 2026. (Reuters)
An Iranian man rides a motorbike past a large-scale poster of late Iranian Supreme Leader Ali Khamenei displayed along a highway, in Tehran, Iran, 01 July 2026. (Reuters)
TT

‘Thought They’d Never Be Caught’: The Strike That Killed Iran’s Ali Khamenei

An Iranian man rides a motorbike past a large-scale poster of late Iranian Supreme Leader Ali Khamenei displayed along a highway, in Tehran, Iran, 01 July 2026. (Reuters)
An Iranian man rides a motorbike past a large-scale poster of late Iranian Supreme Leader Ali Khamenei displayed along a highway, in Tehran, Iran, 01 July 2026. (Reuters)

On Saturday, February 28, Tehran residents were embarking on the working week during the Islamic holy month of Ramadan, nervously anticipating celebrations for the Iranian New Year against the background of diplomatic efforts to stave off war with the US and Israel.

That morning, there was also activity around and inside the main government complex in Tehran just off Pasteur Street in the heart of the capital, which housed the residence and offices of then supreme leader Ali Khamenei.

The morning rush was rocked as several explosions shook the area, with smoke seen rising from around the government complex, known locally as the beit-e rahbari (house of the leader).

"The State of Israel has launched a preemptive strike against Iran," the Israeli defense ministry announced.

For hours, uncertainty surrounded the fate of the man aged 86 who had ruled Iran for more than three and a half decades and had maintained a position of zero compromise with the United States as well as crushing dissent.

"Khamenei, one of the most evil people in History, is dead," US President Donald Trump wrote that night on Truth Social, saying he "was unable to avoid our Intelligence and Highly Sophisticated Tracking Systems".

Iranian officials initially insisted that Khamenei had survived. But on the morning of March 1 a state television announcer, his voice breaking with emotion, declared that the leader had been martyred during the holy month of Ramadan.

- 'Path of sacrifice' -

The New York Times subsequently reported that the CIA had been tracking Khamenei for months and had learned that a meeting of top Iranian officials would take place that Saturday morning at the leadership compound, with the leader present.

The intelligence was passed to Israel and, two hours and five minutes after the Israeli jets took off, at around 9:40 am Tehran time, the long-range missiles struck the compound, it said.

The attack took place in broad daylight, which is highly unusual for such a strike.

"They thought they would never be caught, because we never bomb during breakfast. But we bombed," Trump said during the G7 summit in France last month.

Khamenei was not the only top official killed, with a whole echelon of senior figures wiped out including Revolutionary Guards chief Mohammad Pakpour, Khamenei's military advisor Ali Shamkhani and defense minister Aziz Nasirzadeh.

His family was also not spared with a daughter, daughter-in-law, son-in-law and infant granddaughter also killed.

While his son Mojtaba Khamenei, a key figure for years in his father's office, lost his wife Zahra Haddad-Adel, he survived albeit with wounds according to Iranian officials. One week later he was named the new supreme leader but has yet to be seen in public.

Ali Khamenei had always taken major security precautions. He never left Iran as supreme leader and his speeches were rarely carried live on television or announced in advance. During Israel's 12-day war against Iran in June 2025, he had reportedly retreated to a bunker.

But in an apparent act of defiance, he had never disappeared totally from public view and on February 17 gave his final public speech in the northern city of Tabriz, saying the US wanted to "devour" Iran.

He urged people to stay calm and go about their business "without any worries".

Observers were startled that, given the risks, Ali Khamenei was present in the very center of Tehran on February 28 rather than in hiding elsewhere in the vast country.

- 'You wouldn't believe' -

But the attack also further revealed the startling US and Israeli intelligence penetration of Iran, a strategic weakness exposed in the 2025 war when Israel killed a succession of key figures in targeted strikes.

According to the Financial Times, road-surveillance cameras in Tehran including around the leadership compound had been hacked years ago by Israel, enabling the identification of guards, their routines and movements.

Trump said at the G7 that satellite surveillance meant that "if somebody walks in and he has got a badge with his name on it... they can tell the name, they can give you the serial number".

"We can see things, you wouldn't believe the quality of the stuff that we have. That's why we have been so successful."


France Sets Presidential Election Dates

File photo: A person casts their vote at a polling station in the Magenta district during the first round of France's crunch legislative elections in Noumea in the first constituency of the French Pacific territory of New Caledonia, on June 30, 2024. (AFP)
File photo: A person casts their vote at a polling station in the Magenta district during the first round of France's crunch legislative elections in Noumea in the first constituency of the French Pacific territory of New Caledonia, on June 30, 2024. (AFP)
TT

France Sets Presidential Election Dates

File photo: A person casts their vote at a polling station in the Magenta district during the first round of France's crunch legislative elections in Noumea in the first constituency of the French Pacific territory of New Caledonia, on June 30, 2024. (AFP)
File photo: A person casts their vote at a polling station in the Magenta district during the first round of France's crunch legislative elections in Noumea in the first constituency of the French Pacific territory of New Caledonia, on June 30, 2024. (AFP)

France will hold the first round of its next presidential election on April 18, 2027, with a run-off set ‌for May ‌2, the ‌government ⁠spokeswoman, Maud Bregeon, said ⁠on Wednesday following a cabinet meeting to officially approve the dates.

The race to ‌succeed ‌President Emmanuel Macron — ‌who cannot run ‌again after two terms — is shaping up as a ‌fragmented contest, with polls placing the ⁠far-right ⁠National Rally in a leading position, and a crowded field raising the prospect of a run-off dominated by political extremes, Reuters said.