| SYMBOL | COMMON_NAME | aka. SYNONYMS |
UAC-0227 is an APT group that has been active since at least March 2025, targeting local governments, critical infrastructure, and various organizations in the European Union. The group employs phishing campaigns that utilize SVG file attachments to distribute stealers like Amatera Stealer and Strela Stealer. Their tactics include leveraging ClickFix-style methods to implement their threats.
There are currently no families associated with this actor.
| 2025-10-10
⋅
Security Affairs
⋅
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors WRECKSTEEL HOMESTEEL GIFTEDCROOK UAC-0227 |
| 2025-10-08
⋅
⋅
CIP
⋅
New cyber threats: who and how to attack enemy groups WRECKSTEEL HOMESTEEL GIFTEDCROOK UAC-0227 |