June 15, 2023 By Pierluigi Paganini
Russia-linked APT group Gamaredon is using a new toolset in attacks aimed at critical organizations in Ukraine.
The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations.
Symantec researchers reported that in some cases, the cyberespionage group remained undetected in the target networks for three months. The threat actors focuses on stealing sensitive information such as reports about the deaths of Ukrainian military service members, enemy engagements and air strikes, arsenal inventories, military training, and more.