Click here to download all references as Bib-File.•
| 2025-04-07
⋅
SOC Prime
⋅
UAC-0226 Attack Detection: New Cyber-Espionage Campaign Targeting Ukrainian Innovation Hubs and Government Entities with GIFTEDCROOK Stealer GIFTEDCROOK UAC-0226 |
| 2025-04-03
⋅
SOC Prime
⋅
UAC-0219 Attack Detection: A New Cyber-Espionage Campaign Using a PowerShell Stealer WRECKSTEEL WRECKSTEEL UAC-0219 |
| 2025-04-03
⋅
SOC Prime
⋅
UAC-0219 Attack Detection: A New Cyber-Espionage Campaign Using a PowerShell Stealer WRECKSTEEL WRECKSTEEL |
| 2024-12-09
⋅
SOC Prime
⋅
UAC-0185 aka UNC4221 Attack Detection: Hackers Target the Ukrainian Defense Forces and Military-Industrial Complex UAC-0185 |
| 2024-07-26
⋅
SOC Prime
⋅
UAC-0102 Phishing Attack Detection: Hackers Steal Authentication Data Impersonating the UKR.NET Web Service UAC-0102 |
| 2024-07-25
⋅
SOC Prime
⋅
UAC-0057 Attack Detection: A Surge in Adversary Activity Distributing PICASSOLOADER and Cobalt Strike Beacon Cobalt Strike PicassoLoader Ghostwriter |
| 2024-07-24
⋅
SOC Prime
⋅
UAC-0063 Attack Detection: Hackers Target Ukrainian Research Institutions Using HATVIBE, CHERRYSPY, and CVE-2024-23692 UAC-0063 |
| 2024-02-26
⋅
SOC Prime
⋅
UAC-0149 Attack Detection: Hackers Launch a Targeted Attack Against the Armed Forces of Ukraine, as CERT-UA Reports COOKBOX UAC-0149 |
| 2023-11-14
⋅
SOC Prime
⋅
Remcos RAT Detection: UAC-0050 Hackers Launch Phishing Attacks Impersonating the Security Service of Ukraine Remcos UAC-0050 |
| 2023-11-09
⋅
SOC Prime
⋅
Agonizing Serpens Attack Detection: Iran-Backed Hackers Target Israeli Tech Firms and Educational Institutions Pink Sandstorm |
| 2023-06-16
⋅
SOC Prime
⋅
PicassoLoader and Cobalt Strike Beacon Detection: UAC-0057 aka GhostWriter Hacking Group Attacks the Ukrainian Leading Military Educational Institution Cobalt Strike PicassoLoader Ghostwriter |
| 2023-02-22
⋅
SOC Prime
⋅
New Phishing Attack Detection Attributed to the UAC-0050 and UAC-0096 Groups Spreading Remcos Spyware Remcos UAC-0050 |
| 2023-02-03
⋅
SOC Prime
⋅
UAC-0114 Group aka Winter Vivern Attack Detection: Hackers Launch Phishing Campaigns Targeting Government Entities of Ukraine and Poland Winter Vivern |
| 2022-11-15
⋅
SOC Prime
⋅
Somnia Malware Detection: UAC-0118 aka FRwL Launches Cyber Attacks Against Organizations in Ukraine Using Enhanced Malware Strains Cobalt Strike Vidar UAC-0118 |
| 2022-07-05
⋅
SOC Prime
⋅
Raccoon Stealer Detection: A Novel Malware Version 2.0 Named RecordBreaker Offers Hackers Advanced Password-Stealing Capabilities RecordBreaker |
| 2022-03-21
⋅
SOC Prime
⋅
Vermin (UAC-0020) Hacking Collective Hits Ukrainian Government and Military with SPECTR Malware Vermin UAC-0020 |
| 2022-02-16
⋅
SOC Prime
⋅
QBot Malware Detection: Old Dog New Tricks QakBot |
| 2021-01-25
⋅
SOC Prime
⋅
Affiliates vs Hunters: Fighting the DarkSide DarkSide |
| 2018-05-11
⋅
SOC Prime
⋅
Attackers Exploit DLL Hijacking to Bypass SmartScreen N40 |