KYIV. Nov 10 (Interfax-Ukraine) – Specialists of the Ukrainian government’s computer emergency response team CERT-UA warn of a massive distribution of emails with malicious links allegedly on behalf of the State Service for Special Communications and Information Protection of Ukraine.
"If you click on a link from an email, a RAR archive will be created on your computer [for example, 11/08/2022.rar] containing a shortcut file called ‘Information security tools with an expert opinion on compliance with the requirements of technical information protection. lnk.’ Opening this file will lead to the download of malware, including those that steal data," the message said on Wednesday.
According to it, experts associate such activity with a group of hackers UAC-0010 (Armageddon).
"At the end of October, malicious emails were sent out on behalf of a number of structures in the security and defense sector – the press service of the General Staff of the Armed Forces of Ukraine and the Security Service of Ukraine. Therefore, it is possible that hackers can use such a ‘cover’ in the future," CERT-UA experts noted.
As reported, the hacker group UAC-0010 (Armageddon) is associated with the Russian Federal Security Service (FSB). Since the beginning of Russia’s full-scale military invasion of Ukraine, they have been on the list of the most active groups attacking Ukraine.