Cybercriminals are targeting Ukraineโs government, military, and defense sectors with a new cyberespionage campaign using phishing emails and malware. The campaign, linked to the threat actor UAC-0099, employs sophisticated tools like Matchboil, Matchwok, and Dragstare to steal data and gain remote access. #UAC-0099 #Matchboil
Keypoints
- Hackers have been conducting a cyberespionage campaign against Ukraine since at least 2022.
- The attackers use phishing emails disguised as Ukrainian court summonses to deliver malware.
- The primary malware, Matchboil, collects system data and deploys additional malicious tools.
- Tools like Matchwok and Dragstare enable remote control and data theft from compromised systems.
- Patterns of this campaign suggest links to Russian hacking activities, with evolving tactics observed.
Read More: https://therecord.media/hackers-using-fake-summonses-ukraine