About this informs The Hacker News website, referring to the Canadian research company BlackBerry Threat Research and Intelligence, malefactors send contaminated documents, trying to lure their victims from among Ukrainian officials and officials of other countries that support Ukraine. Get access to their computers. Experts found two harmful documents sent from the Hungarian IP address.
Judging by hacker tools and writing the code of malicious files, the hand to the Romcom group was also known as Tropical Scorpius, UNC2596 and Void Rabisu. Most recently, these hackers have attacked politicians in Ukraine who are working closely with the Western countries and the US health care organization that deals with Ukrainian refugees. Recent bands identified BlackBerry are allegedly for the "World Congress of Ukrainians" and are called "OverView_F_UWCS_UKRAINNATO_CAMPAGN.
DOCX", as well as "Letter_Nato_summit_vilnius_2023. If the victim opens these attached files in the mail, a complex sequence of performing a malicious code will start, which will give hackers access to the computer and victim files. The Trojan program, written on C ++, secretly collect information from the victim's computer and will give it to cybercrime.
"Although we have not yet found the initial vector of infection, hackers are likely to rely on targeted phishing methods, forcing their victims to move to a specially created copy of the Website of the World Congress of Ukrainians," - said in the analysis of Canadian Cyber Security experts with Blackberry. Earlier, Focus reported that Russian hackers will massively break the mail of Ukrainians. APT28 cybercriminals use a cunning scheme to find out email and victims' passwords.
USA
Українська
English
Français
Deutsch
Italiano
Polski
Čeština
Español
Slovensku
