Cyberattack on NBU contractor: what is known about the incident
19 February 18:17
The National Bank of Ukraine’s online store for numismatic products has temporarily suspended operations due to a cyberattack on a contractor. This was reported by the regulator itself , according to "Komersant Ukrainian".
This is not a case of hacking into the central bank’s internal systems, but rather an incident involving a third-party service provider that supports the online store.
What data could have been compromised
The NBU does not rule out that attackers may have gained access to the personal information of store users. Potentially, this includes:
- first and last names,
- phone number,
- email address,
- delivery address.
According to the regulator, financial details, such as payment card data or banking transactions, were not affected.
Phishing risk
The bank warns that the contact details obtained could be used for phishing attacks. Users are urged to be wary of suspicious emails, messages, or calls that may be disguised as official communications from the NBU or its partners.
This tactic — using leaked contact information for social engineering — has become common in cyberattacks on government and commercial services.
Were the regulator’s systems affected?
The National Bank of Ukraine emphasizes that the regulator’s information systems are operating normally and that data protection systems have not been compromised.
The NBU is currently working with a contractor to investigate the circumstances of the incident and assess the possible consequences. Work is also underway to restore the online store.
Cyberattacks on the public sector
The incident occurred amid a series of attacks on government online services. In March 2025, a large-scale cyberattack on Ukrzaliznytsia led to the suspension of online ticket sales through the website and mobile app for thousands of users.
Cybersecurity experts have repeatedly emphasized that contractors working for state institutions often become the “weak link” in the security chain — it is through them that attackers try to gain access to data.
So far, the NBU has not announced when the store will be fully restored. However, the incident once again raises questions about the security of personal data in state online services and the responsibility of IT providers.
