Introduction In early March CERT-UA identified a spear-phishing campaign
targeting government organizations within Ukraine that results in the
deployment of the open-source backdoor ‘MicroBackdoor’. CERT-UA
attributed this campaign to UAC-0051/UNC115...
Introduction On 23 Feb 2022 numerous organizations within Ukraine were
targeted with attacks employing ‘KillDisk’ or ‘HermeticWiper’ malware.
Once deployed this malware employs various drivers to corrupt the master
boot record (MBR) of the target end...
Introduction Spook ransomware is the Prometheus ransomware variant
currently employed by the Spook ransomware group. The group began
operating in late Sep 2021 and has performed a number of large scale
compromises across the globe. Like a number of o...