New APT28-linked cyberespionage campaign hits Ukraine institutions

24 July 2024

Intrusions by UAC-0063 involved the initial compromise of an employee’s email account to facilitate the delivery of the malware strains, with Cherryspy enabling Python code execution and Hatvibe allowing further compromise, said CERT-UA, which also noted the group’s potential compromise of Armenia’s defense ministry. Such a development comes a month after CERT-UA’s discovery of widespread Hatvibe injections by exploiting an HTTP File Server vulnerability.

Source: SC Magazine

Date:

24 July 2024

Categorie(s):

NEWS

Tag(s):

IT, Malware, New, News, Ukraine

Despite massive security spending, 44% of CISOs fail to detect breaches18 October 2024
Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began18 October 2024
What to do if your iPhone or Android smartphone gets stolen?18 October 2024
Cybercrime’s constant rise is becoming everyone’s problem18 October 2024
New infosec products of the week: October 18, 202418 October 2024