Russian hackers send out emails under the name of Ukraine's State Service of Special Communications and Information Protection
Russian hackers are sending out emails with malicious links under the name of the State Service of Special Communications and Information Protection of Ukraine.
Source: Official website of the State Service of Special Communications and Information Protection of Ukraine
Quote: "Specialists from the government's Computer Emergency Response Team of Ukraine CERT-UA have recorded a mass distribution of emails with malicious links allegedly under the name of the State Service of Special Communications and Information Protection of Ukraine. This activity is associated with the hacker group UAC-0010 (Armageddon).
If you click on a link from this email, an RAR-archive will be created on your computer (for example, "08.11.2022.rar"), which contains a shortcut named "TZI [technical information protection - ed.] tools certified as complying with Technical Information Protection.lnk". Opening this file will download malware, including those that steal data.
CERT-UA notes that the emails are being sent using the service @mail.gov.ua. That is, the perpetrators are even more carefully disguised as representatives of state bodies. Details about the attack are on the website"
Details: The hacker group UAC-0010 (Armageddon) has been linked to the Russian Federal Security Service (FSB). Since the beginning of Russia's full-scale military invasion of Ukraine, they have been among the most active groups attacking Ukraine.
It is noted that usually the perpetrators use topics that are painful and important for Ukrainians.
At the end of October, malicious emails were sent out on behalf of a number of agencies in the security and defence sector – the press service of the General Staff of the Armed Forces of Ukraine and the Security Service of Ukraine. It is possible that hackers may use such a "cover" in the future.
The State Service of Special Communications and Information Protection of Ukraine emphasises that people should not neglect the main rules of cyber hygiene. Be careful with any messages you receive. Do not open or download suspicious files or links. Check the sender if possible.
Journalists fight on their own frontline. Support Ukrainska Pravda or become our patron!