UA EN RU
All topics
Topics
UA EN RU
Last news
Ukraine nationalized the assets of Russian oligarch Deripaska for over 2 billion UAH today, 18:32
The head of the recruitment center stated that it is much easier to fight than to work as a military officer: he is regularly caught drunk driving today, 18:29
Needed medicine: Trump commented on the market decline amid tariffs today, 17:05
Peskov announced Putin's position on the ceasefire in Ukraine today, 15:52
Germany will practice a scenario of a Russian attack on NATO countries today, 14:35
German strike drone with AI successfully passed combat tests in Ukraine today, 12:55
Saudi companies and TikTok sponsored Trump's latest fundraisers - NYT today, 12:30
The aggressor is losing momentum: the Russian offensive in Ukraine is slowing down since November today, 12:05
The Kremlin plans to resettle 5 million Russians in the occupied territories by 2030 today, 11:40
Musk calls for zero tariffs despite Trump's policy today, 10:55
Reuters reported how Ukraine could benefit from Trump's tariffs today, 10:05
The Times has learned how Russia was preparing for a conflict with NATO even before the war with Ukraine today, 09:15
We Must Prepare: The European Union Says When Russia Might Attack today, 08:25
How Putin Outplayed the USA: The Guardian on the Outcomes of Dmitriev's Visit to Washington today, 06:05
Show more

Targeted cyberattacks on the defense sector recorded in Ukraine via a popular messenger.

19.03.2025 815
Shostal Oleksandr
Journalist Shostal Oleksandr
19.03.2025 815
Cyberattacks on the defense sector recorded
Cyberattacks on the defense sector recorded

The CERT-UA team has detected cyberattacks on employees of the defense industry and the Armed Forces of Ukraine.

In March 2025, messages containing reports were found in the Signal messenger. Some messages were sent from individuals with compromised accounts to increase trust.

Typically, these archives contain a .pdf file and an executable file named DarkTortilla. DarkTortilla is a crypter/loader used to launch the remote control program Dark Crystal RAT (DCRAT).

'It should be noted that this activity has been tracked under the identifier UAC-0200 since at least the summer of 2024. Meanwhile, starting in February 2025, the content of the bait messages relates to UAVs, electronic warfare means, etc. The use of popular messengers, both on mobile devices and computers, significantly expands the attack surface, including by creating uncontrolled (in terms of protection means) channels for information exchange,' - CERT-UA reported.

Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
Ukrainian flag against the backdrop of ruins
Ukraine nationalized the assets of Russian oligarch Deripaska for over 2 billion UAH
today, 18:32 25
The head of the recruitment center caught drunk driving
The head of the recruitment center stated that it is much easier to fight than to work as a military officer: he is regularly caught drunk driving
today, 18:29 25
Trump commented on the market decline
Needed medicine: Trump commented on the market decline amid tariffs
today, 17:05 27
Putin announced a ceasefire
Peskov announced Putin's position on the ceasefire in Ukraine
today, 15:52 125
Scenario of a Russian attack on NATO
Germany will practice a scenario of a Russian attack on NATO countries
today, 14:35 185
German strike drone with AI in tests
German strike drone with AI successfully passed combat tests in Ukraine
today, 12:55 260

Advertising