Tag: ukraine

Hackers Exploiting 7-Zip Zero-Day Vulnerability to Deploy SmokeLoader Malware

Feb 4, 2025 12:12 PM

Tags: cve, cyber, cybercrime, exploit, flaw, group, hacker, malware, russia, software, threat, ukraine, vulnerability, windows, zero-day

A newly identified zero-day vulnerability in the widely used 7-Zip archiving software, designated as CVE-2025-0411. This critical flaw, which was exploited in the wild, is enabling threat actors to bypass vital Windows security protections and deploy SmokeLoader malware. The campaign has predominantly targeted Ukrainian organizations, with experts suspecting links to Russian cybercrime groups amid the…
CVE-2025-0411: 7-Zip Vulnerability Exploited in Attacks on Ukraine

Feb 4, 2025 9:12 AM

Tags: attack, cve, exploit, threat, ukraine, vulnerability, zero-day

A new report from the Zero Day Initiative (ZDI) Threat Hunting team reveals that Ukrainian organizations have been First seen on securityonline.info Jump to article: securityonline.info/cve-2025-0411-7-zip-vulnerability-exploited-in-attacks-on-ukraine/
Keir Starmer scrapped email account in 2022 after Russian hacking, says report

Feb 3, 2025 2:12 PM

Tags: authentication, breach, email, group, hacking, mfa, russia, ukraine

Then opposition leader’s address was ‘dangerously obvious’ and lacked two-factor authentication, book reportedly saysKeir Starmer stopped using a personal email account when he was opposition leader after being warned about a suspected hack by a Russian group, it has been reported.The suspected breach happened in 2022, shortly after the Russian invasion of Ukraine, according to…
Keir Starmer changed ‘dangerously obvious’ email address in 2022 after Russian hacking

Feb 3, 2025 1:12 PM

Tags: breach, email, group, hacking, russia, ukraine

Breach happened shortly after Russian invasion of Ukraine when Starmer was opposition leader, says bookKeir Starmer stopped using a personal email account when he was opposition leader after being warned about a suspected hack by a Russian group, it has been reported.The suspected breach happened in 2022, shortly after the Russian invasion of Ukraine, according…
Russian APT28 Hackers Exploit Zero-Day Vulnerabilities to Target Government and Security Sectors

Jan 29, 2025 6:36 PM

Tags: cyber, cybersecurity, espionage, exploit, government, group, hacker, intelligence, military, russia, strategy, tool, ukraine, vulnerability, zero-day

A detailed analysis from Maverits, a leading cybersecurity firm, reveals a significant evolution in the strategies and objectives of APT28, a cyber-espionage group linked to Russia’s GRU military intelligence unit. Covering activities from 2022 to 2024, the report highlights APT28’s integration of advanced tools, evolving methodologies, and intensified campaigns against Ukraine and its allies. Operating…
Ukraine denies involvement in cyberattack against Slovakia

Jan 27, 2025 7:03 PM

Tags: cyberattack, russia, ukraine

Slovak Prime Minister Robert Fico accused Ukraine of carrying out a cyberattack on the national insurer, deepening a rift over Kyiv’s suspension of Russian gas transit through Slovakia.]]> First seen on therecord.media Jump to article: therecord.media/ukraine-denies-cyberattack-involvement-slovakia
Cyberangriff auf einen Mobilfunkanbieter in Russland

Jan 27, 2025 12:03 AM

Tags: cyberattack, intelligence, russia, ukraine

Ukrainian intelligence launches cyberattack on Russian telecom giant First seen on english.nv.ua Jump to article: english.nv.ua/nation/attack-on-megafon-hur-reports-results-of-cyberattack-on-russian-operator-50484588.html
Suspected Russian-hit Ukrainian state registers recovered

Jan 21, 2025 9:23 PM

Tags: russia, ukraine

First seen on scworld.com Jump to article: www.scworld.com/brief/suspected-russian-hit-ukrainian-state-registers-recovered
Hackers impersonate Ukraine’s CERT to trick people into allowing computer access

Jan 21, 2025 3:22 PM

Tags: access, computer, hacker, software, ukraine

CERT-UA is warning Ukrainians not to accept requests for help via AnyDesk software unless they are sure the source is legitimate.]]> First seen on therecord.media Jump to article: therecord.media/fake-ukraine-cert-anydesk-requests-hackers
CERT-UA warned of scammers impersonating the agency using fake AnyDesk requests

Jan 21, 2025 2:22 PM

Tags: computer, cyber, scam, software, threat, ukraine

CERT-UA warned of scammers impersonating the agency, using fake AnyDesk requests to conduct fraudulent security audits. The Computer Emergency Response Team of Ukraine (CERT-UA) warned of cyber scams involving threat actors impersonating the agency by sending fraudulent AnyDesk connection requests under the guise of security audits. CERT-UA pointed out that it uses the software AnyDesk…
CERT-UA Warns of Cyber Scams Using Fake AnyDesk Requests for Fraudulent Security Audits

Jan 21, 2025 7:22 AM

Tags: computer, cyber, cybersecurity, scam, social-engineering, threat, ukraine

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of ongoing attempts by unknown threat actors to impersonate the cybersecurity agency by sending AnyDesk connection requests.The AnyDesk requests claim to be for conducting an audit to assess the “level of security,” CERT-UA added, cautioning organizations to be on the lookout for such social engineering…
Ukraine restores state registers after suspected Russian cyberattack

Jan 20, 2025 8:24 PM

Tags: cyberattack, infrastructure, intelligence, military, russia, ukraine

Ukraine has restored the infrastructure of its state registers, which were disrupted last month by a major cyberattack believed to have been carried out by Russian military intelligence hackers.]]> First seen on therecord.media Jump to article: therecord.media/ukraine-restores-registers-after-cyberattack
Ukraine’s State Registers Restored Following Cyber-Attack

Jan 20, 2025 3:22 PM

Tags: attack, country, cyber, intelligence, military, russia, service, ukraine

The December 2024 cyber-attack on the country’s state registers, was attributed to Russian military intelligence services First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ukraine-state-registers-restored/
CERT-UA warns against >>security audit<< requests via AnyDesk

Jan 20, 2025 11:22 AM

Tags: access, computer, ukraine

Attackers are impersonating the Computer Emergency Response Team of Ukraine (CERT-UA) via AnyDesk to gain access to target computers. The request (Source: CERT-UA) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/01/20/cert-ua-warns-against-security-audit-requests-via-anydesk/
Star Blizzard hackers abuse WhatsApp to target high-value diplomats

Jan 19, 2025 6:22 PM

Tags: blizzard, defense, hacker, international, phishing, russia, spear-phishing, ukraine

Russian nation-state actor Star Blizzard has been running a new spear-phishing campaign to compromise WhatsApp accounts of targets in government, diplomacy, defense policy, international relations, and Ukraine aid organizations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/star-blizzard-hackers-abuse-whatsapp-to-target-high-value-diplomats/
Suspected Ukrainian hackers impersonating Russian ministries to spy on industry

Jan 15, 2025 6:02 PM

Tags: access, email, hacker, phishing, russia, spy, ukraine

Researchers have recently observed phishing emails purportedly from Russia’s Ministry of Industry and Trade laden with remote access malware.]]> First seen on therecord.media Jump to article: therecord.media/suspected-ukraine-hackers-russian-phishing
Russian espionage and financial theft campaigns have ramped up, Ukraine cyber agency says

Jan 15, 2025 5:02 PM

Tags: cyber, cybersecurity, defense, espionage, finance, government, incident, incident response, russia, theft, ukraine

Over the past year, Ukraine’s cyber incident response center identified and addressed 1,042 cybersecurity incidents impacting government, defense, and critical services.]]> First seen on therecord.media Jump to article: therecord.media/russian-espionage-financial-theft-campaign
International effort erases PlugX malware from thousands of Windows computers

Jan 15, 2025 6:07 AM

Tags: access, awareness, botnet, ceo, china, cisco, computer, conference, control, country, crime, crimes, cyber, cybersecurity, data, email, endpoint, espionage, government, group, hacker, hacking, incident response, infection, infrastructure, international, Internet, law, malicious, malware, microsoft, military, network, office, phishing, privacy, router, russia, service, strategy, threat, ukraine, unauthorized, windows

The US has again taken court-approved action to remove malware from privately-held internet-connected computers across the country, part of an effort by a number of countries to combat infections of a version of the PlugX malware from a Chinese-based group that has infected thousands of Windows machines around the world.PlugX is a remote access Trojan…
Russia-linked APT UAC-0063 target Kazakhstan in with HATVIBE malware

Jan 14, 2025 6:43 PM

Tags: apt, computer, cyber, espionage, intelligence, malware, russia, threat, ukraine

Russia-linked threat actor UAC-0063 targets Kazakhstan to gather economic and political intelligence in Central Asia. Russia-linked threat actors UAC-0063 is targeting Kazakhstan as part of a cyber espionage campaign to gather economic and political intelligence in Central Asia. The Computer Emergency Response Team of Ukraine (CERT-UA) first detailed the activity of UAC-0063 in early 2023.…
IoT und OT: Was 2025 für die Sicherheit von cyber-physischen Systemen bringt

Jan 14, 2025 8:46 AM

Tags: cloud, cyber, iot, nis-2, ukraine

NIS2, Effizienzgewinne durch Security und die Cloud-Verbreitung in der Industrie. Und wieder liegt ein herausforderndes Jahr hinter uns. Die geopolitische Lage insbesondere in der Ukraine und im Nahen Osten ist weiterhin angespannt, während die innenpolitische Situation in den zwei stärksten Volkswirtschaften Europas derzeit ungewiss erscheint. All dies hat auch Auswirkungen auf die Cybersecurity. Schon… First…
Pro-Russia hackers NoName057 targets Italy again after Zelensky’s visit to the country

Jan 12, 2025 10:28 PM

Tags: attack, country, ddos, group, hacker, infrastructure, russia, ukraine

Over the weekend, Italy faced new waves of DDoS attacks carried out by pro-Russia group NoName057(16). Pro-Russia hackers Noname057(16) targeted Italian ministries, institutions, critical infrastructure’s websites and private organizations over the weekend. The new wave of attacks coincides with the visit of Ukrainian President Volodymyr Zelensky to Italy. The group claimed responsibility for the attacks…
Slovakia’s land registry hit by biggest cyberattack in country’s history, minister says

Jan 11, 2025 11:42 AM

Tags: country, cyberattack, russia, ukraine

Slovakia’s agriculture minister said there were “strong indications” the cyberattack originated from Ukraine, adding fuel to a dispute over Kyiv’s suspension of Russian gas transit through Slovakian territory.]]> First seen on therecord.media Jump to article: therecord.media/slovakia-registry-cyberattack-land-agriculture
Was 2025 für die Sicherheit von cyberphysischen Systemen bringt

Jan 10, 2025 1:18 PM

Tags: ukraine
Network-ruining cyberattack disclosed by Russian ISP after Ukrainian hacker claims

Jan 9, 2025 10:21 PM

Tags: cyberattack, hacker, network, russia, ukraine

First seen on scworld.com Jump to article: www.scworld.com/brief/network-ruining-cyberattack-disclosed-by-russian-isp-after-ukrainian-hacker-claims
Ukrainian Cyber Alliance destroyed the connectivity of Russian ISP Nodex

Jan 9, 2025 5:18 PM

Tags: cyber, cyberattack, data, group, russia, ukraine

A group of hacktivists, known as the Ukrainian Cyber Alliance, breached Russian ISP Nodex, stole sensitive documents, and wiped systems. Ukrainian Cyber Alliance hacked Russian ISP Nodex, stole sensitive data, and wiped systems, highlighting their cyberattack capabilities. The Ukrainian Cyber Alliance has been active since 2016, the Pro-Ukraine group has targeted Russian entities since the…
Cyberangriff: Ukraine zerstört Netzwerk eines russischen Providers

Jan 9, 2025 10:18 AM

Tags: cyberattack, ukraine

Der russische Internetprovider Nodex hat bestätigt, ein Cyberangriff habe sein Netzwerk zerstört. Eine ukrainische Hackergruppe bekennt sich schuldig. First seen on golem.de Jump to article: www.golem.de/news/cyberangriff-ukraine-zerstoert-netzwerk-eines-russischen-providers-2501-192259.html
Russian ISP confirms Ukrainian hackers “destroyed” its network

Jan 8, 2025 9:19 PM

Tags: cyber, cyberattack, hacker, Internet, network, russia, service, ukraine

Russian internet service provider Nodex confirmed on Tuesday that its network was “destroyed” in a cyberattack claimed by Ukrainian hacktivists part of the Ukrainian Cyber Alliance First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/russian-isp-confirms-ukrainian-hackers-destroyed-its-network/
Ukrainian hackers take credit for hacking Russian ISP that wiped out servers and caused internet outages

Jan 8, 2025 8:18 PM

Tags: hacker, hacking, Internet, russia, ukraine

The Russian ISP blamed the Ukrainian hackers for causing a “complete failure” across its internet infrastructure. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/08/ukrainian-hackers-take-credit-for-hacking-russian-isp-that-wiped-out-servers-and-caused-internet-outages/
Russian internet provider confirms its network was ‘destroyed’ following attack claimed by Ukrainian hackers

Jan 8, 2025 5:18 PM

Tags: attack, backup, hacker, infrastructure, Internet, network, russia, ukraine

In a statement on the Russian social media platform VKontakte, the St. Petersburg-based company said the “planned” attack “destroyed” its infrastructure overnight. Nodex added that it was working to restore systems from backups but could not provide a timeline for when operations would fully resume.]]> First seen on therecord.media Jump to article: therecord.media/russian-internet-provider-says-network-destroyed-cyberattack
Ukrainian cyber market grows amid war but still lacks support and funding, report says

Jan 8, 2025 4:18 PM

Tags: cyber, cybersecurity, ukraine

The value of Ukraine-based cybersecurity companies has increased fourfold over the past eight years, bolstered in part by the war, a new report says. But several factors appear to be holding the market back.]]> First seen on therecord.media Jump to article: therecord.media/ukraine-cybersecurity-market-study-datadriven