"Russian Cyberattacks Unleash OCEANMAP, MASEPIE, and STEELHOOK Malware on Ukraine"
The Ukrainian Computer Emergency Response Team (CERT-UA) has detected a new phishing campaign by the Russian APT28 group, targeting Ukrainian and Polish entities to distribute novel malware strains OCEANMAP, MASEPIE, and STEELHOOK. These malware tools are designed to steal sensitive information, with MASEPIE enabling file transfers and command execution, STEELHOOK extracting web browser data, and OCEANMAP acting as a backdoor for command execution. The campaign uses deceptive emails to initiate the infection, leveraging PowerShell and the IMAP protocol for control and persistence. This follows recent reports of APT28 exploiting a critical Outlook security flaw and using war-related lures for other cyberattacks.
- CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK The Hacker News
- New malware found in analysis of Russian hacks on Ukraine, Poland The Record from Recorded Future News
- Russia-linked APT28 used new malware in a recent phishing campaign Security Affairs
- Russian military hackers target Ukraine with new MASEPIE malware BleepingComputer
- Russian Military Intelligence Blamed for Blitzkrieg Hacks BankInfoSecurity.com
Reading Insights
0
2
2 min
vs 3 min read
76%
419 → 101 words
Want the full story? Read the original article
Read on The Hacker News