Ukrainian government agencies and the state railway are the latest victims of a new wave of phishing attacks, the Computer Emergency Response Team of Ukraine (CERT-UA) reported last week. During the campaign, the attackers sent out emails on behalf of the State Emergency Service of Ukraine with advice on how to identify a kamikaze drone.
The hacker group, which received the identifier UAC-0140 from CERT-UA, used emails to spread the DolphinCape malware written in Delphi. This malware collects information about the compromised computer, including hostname, username, bitrate, and OS version, launches executable files, extracts valuable data, and takes screenshots. It is worth noting that DolphinCape was first discovered during this phishing campaign.
According to the head of the State Service for Special Communications and Information Protection of Ukraine, Yury Shchigol, phishing attacks are extremely widespread in Ukraine and account for about 60-70 percent of all cyber attacks. The main problem in preventing them, according to Shchigol, is the lack of knowledge among government officials and ordinary citizens on how to recognize a phishing email.
Comments 0