{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T16:24:48Z","timestamp":1776356688502,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":86,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,5,13]],"date-time":"2024-05-13T00:00:00Z","timestamp":1715558400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"European Research Council (ERC)","award":["949127"],"award-info":[{"award-number":["949127"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,5,13]]},"DOI":"10.1145\/3589334.3645401","type":"proceedings-article","created":{"date-parts":[[2024,5,8]],"date-time":"2024-05-08T07:08:13Z","timestamp":1715152093000},"page":"1596-1607","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["Getting Bored of Cyberwar: Exploring the Role of Low-level Cybercrime Actors in the Russia-Ukraine Conflict"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6287-0226","authenticated-orcid":false,"given":"Anh V.","family":"Vu","sequence":"first","affiliation":[{"name":"University of Cambridge, Cambridge, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8936-0683","authenticated-orcid":false,"given":"Daniel R.","family":"Thomas","sequence":"additional","affiliation":[{"name":"University of Strathclyde, Glasgow, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9207-3068","authenticated-orcid":false,"given":"Ben","family":"Collier","sequence":"additional","affiliation":[{"name":"University of Edinburgh, Edinburgh, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3037-2684","authenticated-orcid":false,"given":"Alice","family":"Hutchings","sequence":"additional","affiliation":[{"name":"University of Cambridge, Cambridge, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1673-918X","authenticated-orcid":false,"given":"Richard","family":"Clayton","sequence":"additional","affiliation":[{"name":"University of Cambridge, Cambridge, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8697-5682","authenticated-orcid":false,"given":"Ross","family":"Anderson","sequence":"additional","affiliation":[{"name":"University of Cambridge &amp; Edinburgh, Cambridge, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,5,13]]},"reference":[{"key":"e_1_3_2_2_1_1","unstructured":"netscout. 2022a. hrefhttps:\/\/netscout.com\/blog\/asert\/ddos-threat-landscape-russiaDDoS Threat Landscape -- Russia."},{"key":"e_1_3_2_2_2_1","unstructured":"netscout. 2022b. hrefhttps:\/\/netscout.com\/blog\/asert\/ddos-threat-landscape-ukraineDDoS Threat Landscape -- Ukraine."},{"key":"e_1_3_2_2_3_1","volume-title":"Proceedings of the Workshop on the Economics of Information Security (WEIS)","author":"Anderson Ross","year":"2021","unstructured":"Ross Anderson, Richard Clayton, Rainer B\u00f6hme, and Ben Collier. 2021. hrefhttps:\/\/weis2018.econinfosec.org\/wp-content\/uploads\/sites\/10\/2021\/06\/weis21-anderson.pdfSilicon Den: Cybercrime Is Entrepreneurship. In Proceedings of the Workshop on the Economics of Information Security (WEIS). Springer, New York, NY, USA, bibinfonumpages28 pages."},{"key":"e_1_3_2_2_4_1","volume-title":"hrefhttps:\/\/www.sciencedirect.com\/book\/9781597496377\/cyber-warfareCyber Warfare: Techniques, Tactics and Tools for Security Practitioners","author":"Andress Jason","unstructured":"Jason Andress and Steve Winterfeld. 2011. hrefhttps:\/\/www.sciencedirect.com\/book\/9781597496377\/cyber-warfareCyber Warfare: Techniques, Tactics and Tools for Security Practitioners. Elsevier, Amsterdam, The Netherlands."},{"key":"e_1_3_2_2_5_1","volume-title":"hrefhttps:\/\/www.tandfonline.com\/doi\/abs\/10.1080\/01495939308402915Cyberwar Is Coming! Comparative Strategy","author":"Arquilla John","year":"1993","unstructured":"John Arquilla and David Ronfeldt. 1993. hrefhttps:\/\/www.tandfonline.com\/doi\/abs\/10.1080\/01495939308402915Cyberwar Is Coming! Comparative Strategy , Vol. 12 (1993), 141--165."},{"key":"e_1_3_2_2_6_1","unstructured":"Atlantic Council. 2022. hrefhttps:\/\/www.atlanticcouncil.org\/blogs\/ukrainealert\/vladimir-putins-ukraine-invasion-is-the-worlds-first-full-scale-cyberwarVladimir Putin's Ukraine Invasion Is the World's First Full-Scale Cyberwar."},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"publisher","DOI":"10.1177\/0894439321994234"},{"key":"e_1_3_2_2_8_1","unstructured":"BBC. 2022. hrefhttps:\/\/bbc.co.uk\/news\/technology-60697261Ukraine: Spam Website Set Up to Reach Millions of Russians."},{"key":"e_1_3_2_2_9_1","unstructured":"Bleeping Computer. 2022. hrefhttps:\/\/bleepingcomputer.com\/news\/security\/new-data-wiping-malware-used-in-destructive-attacks-on-ukraine\/New Data-Wiping Malware Used in Destructive Attacks on Ukraine."},{"key":"e_1_3_2_2_10_1","unstructured":"British Society of Criminology. 2015. hrefhttp:\/\/britsoccrim.org\/ethics\/Statement of Ethics."},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"publisher","DOI":"10.1093\/bjc\/azab026"},{"key":"e_1_3_2_2_12_1","volume-title":"Proceedings of the IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). IEEE","author":"Cozar Miguel","year":"2022","unstructured":"Miguel Cozar, David Rodriguez, Jose M. Del Alamo, and Danny Guaman. 2022. hrefhttps:\/\/ieeexplore.ieee.org\/document\/9799336Reliability of IP Geolocation Services for Assessing the Compliance of International Data Transfers. In Proceedings of the IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). IEEE, New York, NY, USA, 181--185."},{"key":"e_1_3_2_2_13_1","unstructured":"Cybernews. 2022a. hrefhttps:\/\/cybernews.com\/cyber-war\/ukraines-cyber-army-hits-russian-cinemas\/Ukraine's Cyber Army Hits Russian Cinemas."},{"key":"e_1_3_2_2_14_1","unstructured":"Cybernews. 2022b. hrefhttps:\/\/cybernews.com\/news\/anonymous-leaks-database-of-the-russian-ministry-of-defence\/Anonymous Leaks Database of the Russian Ministry of Defence."},{"key":"e_1_3_2_2_15_1","unstructured":"Daily Mail. 2022. hrefhttps:\/\/dailymail.co.uk\/news\/article-10585403\/Anonymous-claims-hacked-Russian-state-TV-broadcasts-war-footage-Ukraine.htmlAnonymous Claims It Has Hacked Russian State TV Broadcasts to Show War Footage From Ukraine."},{"key":"e_1_3_2_2_16_1","volume-title":"Corporate Hacking and Technology-Driven Crime: Social Dynamics and Implications. IGI Global","author":"Denning Dorothy E.","unstructured":"Dorothy E. Denning. 2011. hrefhttps:\/\/www.igi-global.com\/chapter\/corporate-hacking-technology-driven-crime\/46425Cyber Conflict as an Emergent Social Phenomenon. In Corporate Hacking and Technology-Driven Crime: Social Dynamics and Implications. IGI Global, Hershey, PA, USA, 170--186."},{"key":"e_1_3_2_2_17_1","volume-title":"Gianluca Stringhini, Jeremy Blackburn, and Damon McCoy.","author":"Doerfler Periwinkle","year":"2021","unstructured":"Periwinkle Doerfler, Andrea Forte, Emiliano De Cristofaro, Gianluca Stringhini, Jeremy Blackburn, and Damon McCoy. 2021. hrefhttps:\/\/dl.acm.org\/doi\/abs\/10.1145\/3476082\u201cI'm a Professor, Which isn't Usually a Dangerous Job\u201d: Internet-facilitated Harassment and Its Impact on Researchers. Proceedings of the ACM on Human-Computer Interaction (HCI), Vol. 5, CSCW2 (2021), 1--32."},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(13)70093-9"},{"key":"e_1_3_2_2_19_1","unstructured":"Financial Times. 2022. hrefhttps:\/\/ft.com\/content\/d5657df5-a962--4acf-b0bd-b892c6b15361Prospect of Russian Cyber War May Have Been 'Overhyped' Says UK Spy Chief."},{"key":"e_1_3_2_2_20_1","unstructured":"Forbes. 2022a. hrefhttps:\/\/forbes.com\/sites\/thomasbrewster\/2022\/02\/28\/moscow-exchange-and-sberbank-websites-knocked-offline-was-ukraines-cyber-army-responsible\/Moscow Exchange Sberbank Websites Knocked Offline-Was Ukraine's Cyber Army Responsible?"},{"key":"e_1_3_2_2_21_1","unstructured":"Forbes. 2022b. hrefhttps:\/\/forbes.com\/sites\/thomasbrewster\/2022\/03\/28\/huge-cyberattack-on-ukrtelecom-biggest-since-russian-invasion-crashes-ukraine-telecom\/`Most Severe' Cyberattack Since Russian Invasion Crashes Ukraine Internet Provider."},{"key":"e_1_3_2_2_22_1","unstructured":"Foreign Policy. 2022. hrefhttps:\/\/foreignpolicy.com\/2022\/04\/11\/russia-cyberwarfare-us-ukraine-volunteer-hackers-it-army\/Don't Underestimate Ukraine's Volunteer Hackers."},{"key":"e_1_3_2_2_23_1","unstructured":"Forkast News. 2022. hrefhttps:\/\/forkast.news\/headlines\/ukraine-seizes-crypto-wallet-funding-russian-forces\/Ukraine Seizes Funds From Crypto Wallet Funding Russian Forces."},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.5038\/1944-0472.16.2.2099"},{"key":"e_1_3_2_2_25_1","volume-title":"Proceedings of the ACM World Wide Web Conference (WWW). ACM","author":"Goga Oana","year":"2013","unstructured":"Oana Goga, Howard Lei, Sree Hari Krishnan Parthasarathi, Gerald Friedland, Robin Sommer, and Renata Teixeira. 2013. hrefhttps:\/\/dl.acm.org\/doi\/abs\/10.1145\/2488388.2488428Exploiting Innocuous Activity for Correlating Users Across Sites. In Proceedings of the ACM World Wide Web Conference (WWW). ACM, New York, NY, USA, 447--458."},{"key":"e_1_3_2_2_26_1","unstructured":"Google. 2023. hrefhttps:\/\/blog.google\/threat-analysis-group\/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape\/Fog of War: How the Ukraine Conflict Transformed the Cyber Threat Landscape."},{"key":"e_1_3_2_2_27_1","volume-title":"Proceedings of the Network Traffic Measurement and Analysis Conference (TMA). International Federation for Information Processing (IFIP)","author":"Gouel Matthieu","year":"2021","unstructured":"Matthieu Gouel, Kevin Vermeulen, Olivier Fourmaux, Timur Friedman, and Robert Beverly. 2021. hrefhttps:\/\/hal.science\/hal-03419874\/IP Geolocation Database Stability and Implications for Network Research. In Proceedings of the Network Traffic Measurement and Analysis Conference (TMA). International Federation for Information Processing (IFIP), Laxenburg, Austria, bibinfonumpages10 pages."},{"key":"e_1_3_2_2_28_1","volume-title":"August","year":"2014","unstructured":"Hackmageddon. 2015. hrefhttps:\/\/hackmageddon.com\/2014\/09\/08\/august-2014-cyber-attacks-statistics\/Cyber Attacks Statistics, August 2014."},{"key":"e_1_3_2_2_29_1","unstructured":"HeadMind. 2022. hrefhttps:\/\/headmind.com\/fr\/industroyer-2\/Industroyer2: The Russian Cyberattack on Ukraine Infrastructure."},{"key":"e_1_3_2_2_30_1","volume-title":"hrefhttps:\/\/www.potomacinstitute.org\/images\/stories\/publications\/potomac_hybridwar_0108.pdfConflict in the 21st Century: The Rise of Hybrid Wars","author":"Hoffman Frank G.","unstructured":"Frank G. Hoffman. 2007. hrefhttps:\/\/www.potomacinstitute.org\/images\/stories\/publications\/potomac_hybridwar_0108.pdfConflict in the 21st Century: The Rise of Hybrid Wars. Potomac Institute for Policy Studies, Arlington, VA, USA."},{"key":"e_1_3_2_2_31_1","doi-asserted-by":"publisher","DOI":"10.1177\/08944393211023324"},{"key":"e_1_3_2_2_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3534566"},{"key":"e_1_3_2_2_33_1","unstructured":"Intricately Market Analysts. 2020. hrefhttps:\/\/blog.intricately.com\/cdn-industry-trends-market-share-customer-sizeCDN Industry: Trends Size and Market Share."},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3517745.3561449"},{"key":"e_1_3_2_2_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/3517745.3561423"},{"key":"e_1_3_2_2_36_1","first-page":"20","article-title":"hrefhttps:\/\/www.usenix.org\/publications\/login\/december-2013-volume-38-number-6\/rent-pwn-analyzing-commodity-booter-ddosRent to Pwn: Analyzing Commodity Booter DDoS Services","volume":"38","author":"Karami Mohammad","year":"2013","unstructured":"Mohammad Karami and Damon McCoy. 2013. hrefhttps:\/\/www.usenix.org\/publications\/login\/december-2013-volume-38-number-6\/rent-pwn-analyzing-commodity-booter-ddosRent to Pwn: Analyzing Commodity Booter DDoS Services. USENIX Login , Vol. 38 (2013), 20--23.","journal-title":"USENIX Login"},{"key":"e_1_3_2_2_37_1","first-page":"113","article-title":"hrefhttps:\/\/tnsr.org\/2022\/06\/why-cyber-dogs-have-yet-to-bark-loudly-in-russias-invasion-of-ukraine\/Why Cyber Dogs Have Yet to Bark Loudly in Russia's Invasion of Ukraine","volume":"5","author":"Kostyuk Nadiya","year":"2022","unstructured":"Nadiya Kostyuk and Erik Gartzke. 2022. hrefhttps:\/\/tnsr.org\/2022\/06\/why-cyber-dogs-have-yet-to-bark-loudly-in-russias-invasion-of-ukraine\/Why Cyber Dogs Have Yet to Bark Loudly in Russia's Invasion of Ukraine. Texas National Security Review , Vol. 5 (2022), 113--126.","journal-title":"Texas National Security Review"},{"key":"e_1_3_2_2_38_1","volume-title":"Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID)","author":"Lukas","year":"2015","unstructured":"Lukas Kr\"amer, Johannes Krupp, Daisuke Makita, Tomomi Nishizoe, Takashi Koide, Katsunari Yoshioka, and Christian Rossow. 2015. hrefhttps:\/\/link.springer.com\/chapter\/10.1007\/978--3--319--26362--5_28AmpPot: Monitoring and Defending Against Amplification DDoS Attacks. In Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID). Springer, New York, NY, USA, 615--636."},{"key":"e_1_3_2_2_39_1","volume-title":"Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID)","author":"Krupp Johannes","year":"2017","unstructured":"Johannes Krupp, Mohammad Karami, Christian Rossow, Damon McCoy, and Michael Backes. 2017. hrefhttps:\/\/link.springer.com\/chapter\/10.1007\/978--3--319--66332--6_19Linking Amplification DDoS Attacks to Booter Services. In Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID). Springer, New York, NY, USA, 427--449."},{"key":"e_1_3_2_2_40_1","first-page":"35","article-title":"hrefhttps:\/\/mural.maynoothuniversity.ie\/13352\/Towards a Concept for Archiving Hacked Websites","volume":"3","author":"Kurzmeier Michael","year":"2020","unstructured":"Michael Kurzmeier. 2020. hrefhttps:\/\/mural.maynoothuniversity.ie\/13352\/Towards a Concept for Archiving Hacked Websites. NPPSH Reflections , Vol. 3 (2020), 35--58.","journal-title":"NPPSH Reflections"},{"key":"e_1_3_2_2_41_1","doi-asserted-by":"publisher","DOI":"10.1080\/01402390.2023.2177987"},{"key":"e_1_3_2_2_42_1","volume-title":"Proceedings of the ACM International Conference on Web Search and Data Mining (WSDM). ACM","author":"Liu Jing","year":"2013","unstructured":"Jing Liu, Fan Zhang, Xinying Song, Young-In Song, Chin-Yew Lin, and Hsiao-Wuen Hon. 2013. hrefhttps:\/\/dl.acm.org\/doi\/10.1145\/2433396.2433457What's in a Name?: An Unsupervised Approach to Link Users Across Communities. In Proceedings of the ACM International Conference on Web Search and Data Mining (WSDM). ACM, New York, NY, USA, 495--504."},{"key":"e_1_3_2_2_43_1","volume-title":"Proceedings of the IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). IEEE","author":"Lusthaus Jonathan","year":"2020","unstructured":"Jonathan Lusthaus, Miranda Bruce, and Nigel Phair. 2020. hrefhttps:\/\/ieeexplore.ieee.org\/document\/9229673Mapping the Geography of Cybercrime: A Review of Indices of Digital Offending by Country. In Proceedings of the IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). IEEE, New York, NY, USA, 448--453."},{"key":"e_1_3_2_2_44_1","volume-title":"Proceedings of the Asia Conference on Computer and Communications Security (ASIACCS). ACM","author":"Maggi Federico","year":"2018","unstructured":"Federico Maggi, Marco Balduzzi, Ryan Flores, Lion Gu, and Vincenzo Ciancaglini. 2018. hrefhttps:\/\/dl.acm.org\/doi\/abs\/10.1145\/3196494.3196542Investigating Web Defacement Campaigns at Large. In Proceedings of the Asia Conference on Computer and Communications Security (ASIACCS). ACM, New York, NY, USA, 443--456."},{"key":"e_1_3_2_2_45_1","volume-title":"Cyber War in Perspective: Russian Aggression against Ukraine","author":"Jaitner Margarita","unstructured":"Margarita Jaitner. 2015. hrefhttps:\/\/ccdcoe.org\/uploads\/2018\/10\/Ch10_CyberWarinPerspective_Jaitner.pdfRussian Information Warfare: Lessons From Ukraine. In Cyber War in Perspective: Russian Aggression against Ukraine. NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE), Tallinn, Estonia, 87--94."},{"key":"e_1_3_2_2_46_1","unstructured":"Lennart Maschmeyer and Myriam Dunn Cavelty. 2022. hrefhttps:\/\/css.ethz.ch\/content\/dam\/ethz\/special-interest\/gess\/cis\/center-for-securities-studies\/pdfs\/PP10--3_2022-EN.pdfGoodbye Cyberwar: Ukraine as Reality Check. Technical Report. Center for Security Studies (CSS) ETH Z\u00fcrich."},{"key":"e_1_3_2_2_47_1","unstructured":"Metro News. 2022. hrefhttps:\/\/metro.co.uk\/2022\/03\/02\/anonymous-servers-down-as-russian-killnet-hackers-strike-back-16202354\/Anonymous Servers Down as Russian Killnet Hackers Strike Back."},{"key":"e_1_3_2_2_48_1","unstructured":"Microsoft. 2022. hrefhttps:\/\/blogs.microsoft.com\/on-the-issues\/2022\/06\/22\/defending-ukraine-early-lessons-from-the-cyber-war\/Defending Ukraine: Early Lessons From the Cyber War."},{"key":"e_1_3_2_2_49_1","unstructured":"Microsoft Threat Intelligence. 2023. hrefhttps:\/\/www.microsoft.com\/security\/security-insider\/microsoft-digital-defense-report-2023Microsoft Digital Defense Report: Building and Improving Cyber Resilience."},{"key":"e_1_3_2_2_50_1","volume-title":"hrefhttps:\/\/uk.sagepub.com\/en-gb\/eur\/applying-regression-and-correlation\/book209139Applying Regression and Correlation: A Guide for Students and Researchers","author":"Miles Jeremy","unstructured":"Jeremy Miles and Mark Shevlin. 2000. hrefhttps:\/\/uk.sagepub.com\/en-gb\/eur\/applying-regression-and-correlation\/book209139Applying Regression and Correlation: A Guide for Students and Researchers. Sage, London, UK."},{"key":"e_1_3_2_2_51_1","volume-title":"Pelayo Vallina, Andriy Panchenko, Georgios Smaragdakis, Oliver Hohlfeld, Narseo Vallina-Rodriguez, and Juan Tapiador.","author":"Moreno Jos\u00e9 Miguel","year":"2023","unstructured":"Jos\u00e9 Miguel Moreno, Sergio Pastrana, Jens Helge Reelfs, Pelayo Vallina, Andriy Panchenko, Georgios Smaragdakis, Oliver Hohlfeld, Narseo Vallina-Rodriguez, and Juan Tapiador. 2023. hrefhttps:\/\/arxiv.org\/pdf\/2302.00598.pdfReviewing War: Unconventional User Reviews as a Side Channel to Circumvent Information Controls. (2023). arxiv: 2302.00598"},{"key":"e_1_3_2_2_52_1","unstructured":"Mykhailo Fedorov. 2022. hrefhttps:\/\/twitter.com\/FedorovMykhailo\/status\/1497642156076511233We Are Creating an IT Army."},{"key":"e_1_3_2_2_53_1","unstructured":"Nature News Explainer. 2022. hrefhttps:\/\/www.nature.com\/articles\/d41586-022-00753--9Where Is Russia's Cyberwar? Analysts Decipher Its Strategy."},{"key":"e_1_3_2_2_54_1","volume-title":"Proceedings of the IEEE European Symposium on Security and Privacy (EuroS&P). IEEE","author":"Nawrocki Marcin","year":"2023","unstructured":"Marcin Nawrocki, John Kristoff, Raphael Hiesgen, Chris Kanich, Thomas C. Schmidt, and Matthias W\"ahlisch. 2023. hrefhttps:\/\/www.computer.org\/csdl\/proceedings-article\/eurosp\/2023\/651200a576\/1OFthBMDVdeSoK: A Data-Driven View on Methods to Detect Reflective Amplification DDoS Attacks Using Honeypots. In Proceedings of the IEEE European Symposium on Security and Privacy (EuroS&P). IEEE, New York, NY, USA, 576--591."},{"key":"e_1_3_2_2_55_1","unstructured":"New York Times. 2022. hrefhttps:\/\/nytimes.com\/2022\/04\/27\/us\/politics\/russia-cyberattacks-ukraine.htmlRussia Uses Cyberattacks in Ukraine to Support Military Strikes Report Finds."},{"key":"e_1_3_2_2_56_1","volume-title":"Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID)","author":"Pastrana Sergio","year":"2018","unstructured":"Sergio Pastrana, Alice Hutchings, Andrew Caines, and Paula Buttery. 2018a. hrefhttps:\/\/link.springer.com\/chapter\/10.1007\/978--3-030-00470--5_10Characterizing Eve: Analysing Cybercrime Actors in a Large Underground Forum. In Proceedings of the International Symposium on Research in Attacks, Intrusions, and Defenses (RAID). Springer, New York, NY, USA, 207--227."},{"key":"e_1_3_2_2_57_1","volume-title":"Proceedings of the ACM World Wide Web Conference (WWW). ACM","author":"Pastrana Sergio","year":"2018","unstructured":"Sergio Pastrana, Daniel R. Thomas, Alice Hutchings, and Richard Clayton. 2018b. hrefhttps:\/\/dl.acm.org\/doi\/10.1145\/3178876.3186178CrimeBB: Enabling Cybercrime Research on Underground Forums at Scale. In Proceedings of the ACM World Wide Web Conference (WWW). ACM, New York, NY, USA, 1845--1854."},{"key":"e_1_3_2_2_58_1","first-page":"390","article-title":"hrefhttps:\/\/journals.sagepub.com\/doi\/abs\/10.1177\/08944393221097881The Illicit Ecosystem of Hacking: A Longitudinal Network Analysis of Website Defacement Groups","volume":"0","author":"Perkins Robert C.","year":"2022","unstructured":"Robert C. Perkins, Marie Ouellet, Christian J. Howell, and David Maimon. 2022. hrefhttps:\/\/journals.sagepub.com\/doi\/abs\/10.1177\/08944393221097881The Illicit Ecosystem of Hacking: A Longitudinal Network Analysis of Website Defacement Groups. Social Science Computer Review , Vol. 0 (2022), 390--409.","journal-title":"Social Science Computer Review"},{"key":"e_1_3_2_2_59_1","doi-asserted-by":"publisher","DOI":"10.2307\/1949286"},{"key":"e_1_3_2_2_60_1","volume-title":"Proceedings of the USENIX Security Symposium (USENIX Security). USENIX Association","author":"Ramesh Reethika","year":"2023","unstructured":"Reethika Ramesh, Ram Sundara Raman, Apurva Virkud, Alexandra Dirksen, Armin Huremagic, Dirk Rodenburg, David Fifield, Rod Hynes, Doug Madory, and Roya Ensafi. 2023. hrefhttps:\/\/www.usenix.org\/conference\/usenixsecurity23\/presentation\/ramesh-network-responsesNetwork Responses to Russia's Invasion of Ukraine in 2022: A Cautionary Tale for Internet Freedom. In Proceedings of the USENIX Security Symposium (USENIX Security). USENIX Association, California, CA, USA, 2581--2598."},{"key":"e_1_3_2_2_61_1","unstructured":"Reuters. 2022. hrefhttps:\/\/reuters.com\/world\/europe\/russia-behind-cyberattack-against-satellite-internet-modems-ukraine-eu-2022-05--10\/Russia Downed Satellite Internet in Ukraine - Western Officials."},{"key":"e_1_3_2_2_62_1","doi-asserted-by":"publisher","DOI":"10.1080\/01402390.2011.608939"},{"key":"e_1_3_2_2_63_1","volume-title":"Virus Bulletin International Conference. Virus Bulletin","author":"Romagna Marco","unstructured":"Marco Romagna and Niek Jan van den Hout. 2017. hrefhttps:\/\/www.virusbulletin.com\/conference\/vb2017\/abstracts\/hacktivism-and-website-defacement-motivations-capabilities-and-potential-threatsHacktivism and Website Defacement: Motivations, Capabilities and Potential Threats. In Virus Bulletin International Conference. Virus Bulletin, Abingdon, Oxfordshire, UK, 1--10."},{"key":"e_1_3_2_2_64_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2022.3170644"},{"key":"e_1_3_2_2_65_1","unstructured":"Stefan Soesanto. 2022. hrefhttps:\/\/css.ethz.ch\/en\/center\/CSS-news\/2022\/06\/the-it-army-of-ukraine.htmlThe IT Army of Ukraine: Structure Tasking and Eco-System. Technical Report. Center for Security Studies (CSS) ETH Z\u00fcrich."},{"key":"e_1_3_2_2_66_1","unstructured":"State Sites of Ukraine. 2022. hrefhttps:\/\/cip.gov.ua\/en\/news\/vid-15-lyutogo-ukrayina-zaznala-ponad-3-000-ddos-atakUkraine Has Suffered Over 3000 DDoS Attacks."},{"key":"e_1_3_2_2_67_1","volume-title":"hrefhttps:\/\/statista.com\/statistics\/1135050\/russia-websites-by-domain-name\/Number of Websites in Russia as of","year":"2022","unstructured":"Statista. 2022a. hrefhttps:\/\/statista.com\/statistics\/1135050\/russia-websites-by-domain-name\/Number of Websites in Russia as of May 2022, by Domain Name."},{"key":"e_1_3_2_2_68_1","volume-title":"hrefhttps:\/\/statista.com\/statistics\/1305280\/denylist-website-russia-invasion-ukraine-by-category\/Number of Web Domains Blocked in Russia Since the Start of the Ukraine Invasion on","year":"2022","unstructured":"Statista. 2022b. hrefhttps:\/\/statista.com\/statistics\/1305280\/denylist-website-russia-invasion-ukraine-by-category\/Number of Web Domains Blocked in Russia Since the Start of the Ukraine Invasion on February 24, 2022 as of April 25, 2022, by Category."},{"key":"e_1_3_2_2_69_1","unstructured":"TASS Russian News Agency. 2022. hrefhttps:\/\/tass.com\/economy\/1458361Number of DDoS Attacks on Russia in 2022 Will Grow 30-Fold."},{"key":"e_1_3_2_2_70_1","unstructured":"TechCrunch. 2022. hrefhttps:\/\/cacm.acm.org\/news\/260233-web-scraping-is-legal-us-appeals-court-reaffirms\/fulltext\/Web Scraping Is Legal U.S. Appeals Court Reaffirms."},{"key":"e_1_3_2_2_71_1","unstructured":"The Economist. 2022. hrefhttps:\/\/economist.com\/by-invitation\/2022\/08\/18\/the-head-of-gchq-says-vladimir-putin-is-losing-the-information-war-in-ukraineThe Head of GCHQ Says Vladimir Putin Is Losing the Information War in Ukraine."},{"key":"e_1_3_2_2_72_1","unstructured":"The Guardian. 2022a. hrefhttps:\/\/theguardian.com\/world\/2022\/feb\/27\/anonymous-the-hacker-collective-that-has-declared-cyberwar-on-russia\/Anonymous: The Hacker Collective That Has Declared Cyberwar on Russia."},{"key":"e_1_3_2_2_73_1","unstructured":"The Guardian. 2022b. hrefhttps:\/\/theguardian.com\/world\/2022\/mar\/01\/ukraine-russia-civilians-missiles-kyiv-tv-towerUkraine Says Russia Targeting Civilians as Missiles Hit Kyiv TV Tower."},{"key":"e_1_3_2_2_74_1","unstructured":"The Guardian. 2022c. hrefhttps:\/\/theguardian.com\/world\/2022\/mar\/15\/volunteer-hackers-fight-russia?It's the Right Thing to Do': The 300 000 Volunteer Hackers Coming Together to Fight Russia."},{"key":"e_1_3_2_2_75_1","unstructured":"The Hacker News. 2022. hrefhttps:\/\/thehackernews.com\/2022\/03\/google-russian-hackers-target.htmlGoogle: Russian Hackers Target Ukrainians European Allies via Phishing Attacks."},{"key":"e_1_3_2_2_76_1","volume-title":"Proceedings of the APWG Symposium on Electronic Crime Research (eCrime). IEEE","author":"Thomas Daniel R.","unstructured":"Daniel R. Thomas, Richard Clayton, and Alastair R. Beresford. 2017. hrefhttps:\/\/ieeexplore.ieee.org\/document\/79450571000 Days of UDP Amplification DDoS Attacks. In Proceedings of the APWG Symposium on Electronic Crime Research (eCrime). IEEE, New York, NY, USA, 79--84."},{"key":"e_1_3_2_2_77_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.chbr.2021.100113"},{"key":"e_1_3_2_2_78_1","volume-title":"hrefhttps:\/\/papers.ssrn.com\/sol3\/papers.cfm?abstract_id=1066922Cybercrime: The Transformation of Crime in the Information Age","author":"Wall David","unstructured":"David Wall. 2007. hrefhttps:\/\/papers.ssrn.com\/sol3\/papers.cfm?abstract_id=1066922Cybercrime: The Transformation of Crime in the Information Age. Wiley, Hoboken, NJ, USA."},{"key":"e_1_3_2_2_79_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy (S&P). IEEE","author":"Warford Noel","year":"2022","unstructured":"Noel Warford, Tara Matthews, Kaitlyn Yang, Omer Akgul, Sunny Consolvo, Patrick Gage Kelley, Nathan Malkin, Michelle L. Mazurek, Manya Sleeper, and Kurt Thomas. 2022. hrefhttps:\/\/ieeexplore.ieee.org\/abstract\/document\/9833643SoK: A Framework for Unifying at-Risk User Research. In Proceedings of the IEEE Symposium on Security and Privacy (S&P). IEEE, New York, NY, USA, 2344--2360."},{"key":"e_1_3_2_2_80_1","volume-title":"Proceedings of the ACM Internet Measurement Conference (IMC). ACM","author":"Weinberg Zachary","year":"2018","unstructured":"Zachary Weinberg, Shinyoung Cho, Nicolas Christin, Vyas Sekar, and Phillipa Gill. 2018. hrefhttps:\/\/dl.acm.org\/doi\/10.1145\/3278532.3278551How to Catch When Proxies Lie: Verifying the Physical Locations of Network Proxies With Active Geolocation. In Proceedings of the ACM Internet Measurement Conference (IMC). ACM, New York, NY, USA, 203--217."},{"key":"e_1_3_2_2_81_1","doi-asserted-by":"publisher","DOI":"10.1080\/00396338.2022.2126193"},{"key":"e_1_3_2_2_82_1","unstructured":"Wired. 2022. hrefhttps:\/\/wired.co.uk\/article\/ukraine-it-army-russia-war-cyberattacks-ddosUkraine's Volunteer ?IT Army' Is Hacking in Uncharted Territory."},{"key":"e_1_3_2_2_83_1","unstructured":"Wired. 2023. hrefhttps:\/\/wired.com\/story\/ukraine-russia-wiper-malware\/Ukraine Suffered More Data-Wiping Malware Last Year Than Anywhere Ever."},{"key":"e_1_3_2_2_84_1","doi-asserted-by":"publisher","DOI":"10.1207\/s1532785xmep0601_3"},{"key":"e_1_3_2_2_85_1","unstructured":"Wordfence. 2022. hrefhttps:\/\/wordfence.com\/blog\/2022\/03\/ukraine-universities-hacked-by-brazilian-via-finland-as-russian-invasion-started\/Ukraine Universities Hacked as Russian Invasion Started."},{"key":"e_1_3_2_2_86_1","unstructured":"ZDNET. 2022. hrefhttps:\/\/zdnet.com\/article\/caddywiper-more-destructive-wiper-malware-strikes-ukrainian-targets\/CaddyWiper: More Destructive Wiper Malware Strikes Ukraine. io"}],"event":{"name":"WWW '24: The ACM Web Conference 2024","location":"Singapore Singapore","acronym":"WWW '24","sponsor":["SIGWEB ACM Special Interest Group on Hypertext, Hypermedia, and Web"]},"container-title":["Proceedings of the ACM Web Conference 2024"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3589334.3645401","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3589334.3645401","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,22]],"date-time":"2025-08-22T00:23:11Z","timestamp":1755822191000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3589334.3645401"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,13]]},"references-count":86,"alternative-id":["10.1145\/3589334.3645401","10.1145\/3589334"],"URL":"https:\/\/doi.org\/10.1145\/3589334.3645401","relation":{},"subject":[],"published":{"date-parts":[[2024,5,13]]},"assertion":[{"value":"2024-05-13","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}