Cómo la nube salvó los datos de Ucrania de los ataques rusos

Cuando comenzó el ataque, los misiles de crucero golpearon una instalación gubernamental ucraniana que albergaba servidores llenos de datos importantes. Al mismo tiempo, los ciberoperadores rusos llevaron a cabo «ataques de limpieza» en las redes informáticas, intentando eliminar toda la información almacenada. A pesar de la naturaleza sofisticada y holística del ataque ruso, los datos ucranianos sobrevivieron al ataque. Una semana antes, se sacó la información del país. Los datos que alguna vez se almacenaron singularmente en servidores físicos, se cargaron en la nube.


In the waxing hours of first light on Feb. 24, as Russian soldiers lumbered across the Ukrainian border from their staging areas towards the fateful day’s objectives, elements of the Russian military and security services worked in conjunction to strike a crippling blow.

Their target – critical Ukrainian government data.

As the multi-pronged invasion commenced, cruise missiles struck a Ukrainian governmental facility housing servers full of important data. At the same time, Russian cyber operatives conducted “wiper attacks” on computer networks – attempting to delete all the stored information.

Despite the sophisticated and holistic nature of the Russian attack, the Ukrainian data survived the onslaught. For a week earlier, it had been virtually smuggled out of the country. The data which had once singularly been stored on physical servers, had been uploaded to the cloud.

“The key to a country’s digital resilience in wartime is the ability quickly to move data outside the country while still connecting to and relying on it for a government’s digital operations,” according to a report from Microsoft on the cyber lessons of the Ukrainian war. “One reason these kinetic and cyberattacks have had limited operational impact is because digital operations and data have been disbursed into the public cloud,” it said.

Microsoft, which competes with Amazon, IBM, Salesforce and other software and computer networking companies in providing cloud services to governments, published the report, “Defending Ukraine: Early Lessons from the Cyber War,” on June 22.

Prior to the Russia-Ukraine war, a data protection law prohibited the Ukrainian government from utilizing the cloud to store and process data, forcing all the data to be centralized and vulnerable, according to the report. The law was amended just days before the invasion to permit the very same information to be housed on the cloud.

The cloud is a system of decentralized, networked computer servers spread out all over the world. Stored data, often encrypted and secure, is housed in duplicate across multiple servers and can be accessed via the internet from any location. The redundancy means that even if one server is destroyed, the data is not lost because it is copied elsewhere.

Governments around the world have been exploring the idea of adopting the cloud for official use. The Pentagon awarded Microsoft a contract for just that reason in 2019 before rescinding it less than a year later. New DoD contracts for cloud computing are expected to be awarded this year.

“It’s also important to think about the longer-lasting lessons that come from these efforts,” the Microsoft report said. “The last few months in Ukraine illustrate the very different defense needs that prevail during a war.”

Fuente: https://www.c4isrnet.com