The EU Mobilises Its Cyber Rapid Response Team To Deal With Russian Attacks

The Ukrainian conflict is escalating and the tensions between the US, EU, UK and Russia have increased.

Russian troops have entered Ukraine, but it's not yet clear if that military incursion will be reinforced by more  cyber incursions targeting Ukraine and its allies. Fresh cyber attacks are thought to be imminent, as Russia's parallel army of cyber attackers stand ready to create havoc in networks and systems across the West.

Now, the European Union is activating its new cyber security team to help Ukraine fight off attacks from Russia.

The EU’s Cyber Rapid Response Team (CRRT) includes around 10 national cybersecurity officials of six European countries, Croatia, Estonia, Lithuania, the Netherlands, Poland and Romania, who can provide assistance to countries under cyber attack. The team falls under the EU's defense cooperation program PESCO  and this will be its first known deployment.

CRRT will allow the member states to help each other to ensure a higher level of cyber resilience and collectively respond to cyber incidents. CRRTs could be used to assist other member states, EU Institutions, CSDP operations as well as partners.  CRRTs will be equipped with a commonly developed deployable cyber toolkits designed to detect, recognise and mitigate cyber threats. Teams would be able to assist with training, vulnerability assessments and other requested support. The six “participating member states made a decision to activate the team,” said Margiris Abukevičius, vice minister at the Ministry of National Defence in Lithuania.

The move comes as Ukrainian cyber security services are on the receiving end of cyber threats and probing attacks as the conflict with Russia increases in scale.

Abukevičius said European officials will work out the details with Ukraine on how many and which experts it will devote to the operation. Sending the cyber team into Ukraine “is an option we’re considering,” Abukevičius said, adding it will depend on the type of support Ukraine requests.

A US cyber warfare officer has confirmed the increase and heightened threat of Russian cyber attacks against US companies, especially those dealing with the Pentagon or Ukrainian government entities, in the first steps to war between Ukraine and Russia. "Russia has targeted clear defense contractors, private companies that support the US military," the unnamed US cyber warfare officer told reporters. "So this is a normal tactic and we would expect this to be no different in the pre-hostilities for Ukraine. Specifically, any US contractors who are supporting Ukraine's government and military."

The Ukrainian government on February 18 asked for the EU’s support of cyber military officials, in a letter to EU leaders seen by POLITICO.

Kyiv’s Foreign Minister Dmytro Kuleba wrote to EU leaders that it would "welcome deployment to Kyiv" of the team of experts to evaluate "vulnerabilities of our key computer networks and systems." Kuleba also requested "additional technical equipment and software for strengthening the cybersecurity infrastructure" from the EU. EU foreign policy chief Josep Borrell recently told reporters that the EU “will send a mission of experts to help Ukraine to face cyber-attacks,” after meeting Kuleba at a meeting of European foreign affairs ministers in Brussels.

Kyiv's call for cyber reinforcements followed two major attacks on Ukrainian government networks in recent weeks.  Hackers have already posted messages on government websites and spread malware to wipe out data. Government websites were also taken down by an avalanche of traffic targeted at them.

The country suffered attacks on its elections in 2014 and on its energy grids in 2015 and 2016. The country was also the epicenter of a global malware outbreak known as "NotPetya" that quickly spread across the world, crippling multinationals like the Danish shipping giant Maersk, logistics giant FedEx and numerous others.

Both the European Union and NATO have has invested in projects schemes supporting Ukraine’s cyber security and digital infrastructure for several years. The country is seen as a front line in global cyber conflict and a testbed for intelligence services to deploy offensive cyber and espionage tools.

In Britain the Home Secretary and the national spy agency GCHQ have urged private companies and public services to take "pre-emptive measures" to defend themselves against an attack.

PESCO Europa:   European Defence Agency:     Politico:     Newsweek:   Telegraph:    Beckers Health IT:     

BankInfoSecurity:

You Might Also Read: 

NATO & Ukraine Agree Deeper Cyber Co-operation:
 

« Financial Services, Online Banking & Cyber Security
New Tools To Simulate Electronic Warfare »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Ixia

Ixia

Ixia provides testing, visibility, and security solutions to strengthen applications across physical and virtual networks.

Solarflare

Solarflare

Solarflare is a leading provider of intelligent networking I/O software and hardware platforms that accelerate, monitor and secure network data.

PhishLine

PhishLine

PhishLine helps Information Security Professionals meet and overcome the increasing challenges associated with social engineering and phishing.

ZenMate

ZenMate

ZenMate is a Virtual Private Network services provider offering secure encrypted access to the internet.

DataProtect

DataProtect

DataProtect is a specialized information security company providing consultancy, information management, integration and training services.

Ogasec

Ogasec

Ogasec is a cybersecurity company formed by the merger between Aker and N-Stalker in 2017. Solutions include Security & Connectivity Networking, Application Security, and Managed Security Services.

ST Engineering

ST Engineering

ST Engineering is a leading provider of trusted and innovative cybersecurity solutions.

TierPoint

TierPoint

TierPoint delivers secure, reliable, and connected infrastructure solutions at the internet’s edge. We meet you where you are in your journey to solve for data storage, compute, and recovery.

Cord3

Cord3

Cord3 delivers data protection, even from trusted administrators – or hackers posing as administrators – with high privilege.

Shevirah

Shevirah

Shevirah specializes in products for automated mobile and IoT device vulnerability assessment, penetration testing, and mobile security awareness training.

Tactical Network Systems (TNS)

Tactical Network Systems (TNS)

Tactical Network Solutions helps you discover hidden attack vectors in IoT and connected devices before someone else does.

Research Institute in Secure Hardware and Embedded Systems (RISE)

Research Institute in Secure Hardware and Embedded Systems (RISE)

The UK Research Institute in Secure Hardware and Embedded Systems (RISE) seeks to identify and address key issues that underpin our understanding of Hardware Security.

FortKnoxster

FortKnoxster

FortKnoxster is a cybersecurity company within the Crypto & FinTech space. Our encryption technologies are blockchain integrated.

Advantex Network Solutions

Advantex Network Solutions

Advantex Network Solutions are a leading provider in Mitel, IT Solutions, Networking, and iP surveillance.

Prelude

Prelude

Prelude offer the first autonomous platform built to attack, defend and train critical assets through continuous red-teaming.

Andesite

Andesite

Andesite is delivering sustained advantage to cyber defense teams through technology and community.