A group of hackers UAC-0020 (Vermin), associated with the law enforcement agencies of occupied Luhansk, attacked the Defense Forces of Ukraine, reports UNN with reference to the State Special communications service.
Details
The government's Computer Emergency Response Team CERT-UA, in cooperation with the cybersecurity center of the Armed Forces of Ukraine, detected and investigated the hostile activity of the UAC-0020 (Vermin) group against the Ukrainian Defense Forces.
What Happened:
- a group of hackers UAC-0020 (Vermin), associated with the law enforcement agencies of occupied Luhansk, attacked the Defense Forces of Ukraine;
- the malefactors sent out electronic lists of contributions to the viglyadi archiv "туррель.фоп.вовчок.гаг ", I have created a decoy file "Wowchok.pdf"; EXE-installer "sync.exe " that BAT file is "run_user.bat";
- file " sync.the exe" contained both legitimate SyncThing components and SPECTR malware files;
- stolen information (documents, files, passwords) was sent to the attacker's computer using the standard Syncthing synchronization functionality.