Threat operation UAC-0050 has leveraged the Remcos surveillance tool in new attacks against Ukrainian government agencies believed to be part of a cyberespionage campaign, reports The Record, a news site by cybersecurity firm Recorded Future. Organizations targeted by the campaign have been sent phishing emails purportedly from Ukraine’s security service seeking recipients to fill out certain information in an attached PDF document, which facilitated Remcos installation, according to a report from Ukraine’s Computer Emergency Response Team.
Source: SC Magazine