Ukrainian cybersecurity officials said Tuesday that a prominent Russian-backed hacking group is behind a new wave of malware attacks being spread via innocuous-looking emails.
The Ukrainian Computer Emergency Response Team said emails warning of unpaid taxes or nuclear terrorism are, in fact, ruses for delivering malicious software. Opening the files, they warned, leads users to downloading Cobalt Strike or CredoMap malware. The Cobalt Strike hacking tool enables attackers to record victims’ keystrokes and move through breached machines, according to cybersecurity researchers.
Attackers are targeting critical infrastructure sectors in Ukraine, the government alert warns.
Ukrainian officials associated the new campaign ...