UA EN RU
All topics
Topics
UA EN RU
Last news
The General Staff responded to Russia's statement about a breakthrough in Dnipropetrovsk today, 00:00
Ukrainians warned about a new massive attack from the Russian Federation: Kyiv and 8 other regions at risk yesterday, 23:19
The Cost of Inefficiency: Large-Scale Russian Attacks Require Large-Scale Organizational Responses from Ukraine yesterday, 21:35
War may come to us: the head of the Czech Republic issued a troubling warning yesterday, 20:45
Zelensky: The USA unexpectedly sent missiles intended for Ukraine to another country yesterday, 18:48
Zelensky said where Trump sent the 20 thousand missiles promised by Biden yesterday, 18:30
Elon Musk's Father Arrived in Moscow yesterday, 16:59
The main blow is yet to come: the US revealed what revenge Putin is preparing for the planes yesterday, 12:30
In the Kremlin named the main 'enemy': it turned out to be neither the West nor Zelensky yesterday, 08:30
Ukraine has created a ballistic missile 'more powerful than American analogs': already successfully tested yesterday, 05:30
Front line status as of June 7, 2025. General Staff report yesterday, 00:14
Zelensky spoke about the destroyed Russian 'Iskanders' 07.06.2025
They will not get a respite: Russia has issued an ultimatum to Ukraine 07.06.2025
A prominent historian explained what Ukraine's victory in the war with Russia will be 07.06.2025
Show more

Targeted cyberattacks on the defense sector recorded in Ukraine via a popular messenger.

19.03.2025 1948
Shostal Oleksandr
Journalist Shostal Oleksandr
19.03.2025 1948
Cyberattacks on the defense sector recorded
Cyberattacks on the defense sector recorded

The CERT-UA team has detected cyberattacks on employees of the defense industry and the Armed Forces of Ukraine.

In March 2025, messages containing reports were found in the Signal messenger. Some messages were sent from individuals with compromised accounts to increase trust.

Typically, these archives contain a .pdf file and an executable file named DarkTortilla. DarkTortilla is a crypter/loader used to launch the remote control program Dark Crystal RAT (DCRAT).

'It should be noted that this activity has been tracked under the identifier UAC-0200 since at least the summer of 2024. Meanwhile, starting in February 2025, the content of the bait messages relates to UAVs, electronic warfare means, etc. The use of popular messengers, both on mobile devices and computers, significantly expands the attack surface, including by creating uncontrolled (in terms of protection means) channels for information exchange,' - CERT-UA reported.

Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
The General Staff responded to Russia's statement about a breakthrough in Dnipropetrovsk
The General Staff responded to Russia's statement about a breakthrough in Dnipropetrovsk
today, 00:00 508
Ukrainians warned about a new massive attack from the Russian Federation: Kyiv and 8 other regions at risk
Ukrainians warned about a new massive attack from the Russian Federation: Kyiv and 8 other regions at risk
yesterday, 23:19 504
The Cost of Inefficiency: Large-Scale Russian Attacks Require Large-Scale Organizational Responses from Ukraine
The Cost of Inefficiency: Large-Scale Russian Attacks Require Large-Scale Organizational Responses from Ukraine
yesterday, 21:35 531
War may come to us: the head of the Czech Republic issued a troubling warning
War may come to us: the head of the Czech Republic issued a troubling warning
yesterday, 20:45 580
Zelensky: The USA unexpectedly sent missiles intended for Ukraine to another country
Zelensky: The USA unexpectedly sent missiles intended for Ukraine to another country
yesterday, 18:48 692
Zelensky said where Trump sent the 20 thousand missiles promised by Biden
Zelensky said where Trump sent the 20 thousand missiles promised by Biden
yesterday, 18:30 628

Advertising