The Hacker News
New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT
February 26^th 2024 at 14:54

New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT

By: The Hacker News

Ukrainian entities based in Finland have been targeted as part of a malicious campaign distributing a commercial remote access trojan known as Remcos RAT using a malware loader called IDAT Loader. The attack has been attributed to a threat actor tracked by the Computer Emergency Response Team of Ukraine (CERT-UA) under the moniker UAC-0184. "The attack, as part of the IDAT Loader, used

The Hacker News
DirtyMoe Malware Infects 2,000+ Ukrainian Computers for DDoS and Cryptojacking
February 2^nd 2024 at 13:17

DirtyMoe Malware Infects 2,000+ Ukrainian Computers for DDoS and Cryptojacking

By: Newsroom

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned that more than 2,000 computers in the country have been infected by a strain of malware called DirtyMoe. The agency attributed the campaign to a threat actor it calls UAC-0027. DirtyMoe, active since at least 2016, is capable of carrying out cryptojacking and distributed denial-of-service (DDoS) attacks. In March

The Hacker News
CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK
December 29^th 2023 at 10:41

CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK

By: Newsroom

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign orchestrated by the Russia-linked APT28 group to deploy previously undocumented malware such as OCEANMAP, MASEPIE, and STEELHOOK to harvest sensitive information. The activity, which was detected by the agency between December 15 and 25, 2023, targeted Ukrainian

The Hacker News
UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware
December 22^nd 2023 at 07:46

UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware

By: Newsroom

The threat actor known as UAC-0099 has been linked to continued attacks aimed at Ukraine, some of which leverage a high-severity flaw in the WinRAR software to deliver a malware strain called LONEPAGE. "The threat actor targets Ukrainian employees working for companies outside of Ukraine," cybersecurity firm Deep Instinct said in a Thursday analysis. UAC-0099 was first

The Hacker News
Cyber Attacks Strike Ukraine's State Bodies in Espionage Operation
May 24^th 2023 at 06:54

Cyber Attacks Strike Ukraine's State Bodies in Espionage Operation

By: Ravie Lakshmanan

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks targeting state bodies in the country as part of an espionage campaign. The intrusion set, attributed to a threat actor tracked by the authority as UAC-0063 since 2021, leverages phishing lures to deploy a variety of malicious tools on infected systems. The origins of the hacking crew are presently unknown. In

FreshRSS

New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT

DirtyMoe Malware Infects 2,000+ Ukrainian Computers for DDoS and Cryptojacking

CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK

UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware

Cyber Attacks Strike Ukraine's State Bodies in Espionage Operation