The government computer emergency response team of Ukraine CERT-UA, which operates under the State Special Communications, reports on the mass distribution of dangerous e-mails with the topics “Information Bulletin” and “Combat Order”. They are sent to private e-mail addresses, in particular, supposedly from the National Academy of the Security Service of Ukraine,” the message reads.
According to cyber experts, opening the attachments contained in the emails will lead to the launch of the GammaLoad.PS1_v2 malware on the computer.
The attack is linked to the UAC-0010 (Armageddon) group. This Russian FSB hacker group is one of those that have been actively attacking the critical information infrastructure of Ukraine since the beginning of the full-scale military invasion of Russia.
The State Intelligence Service notes that cybercriminals usually use topics that are painful for Ukrainians. For example, during a similar attack in May, members of Armageddon speculated on the subject of occupied Kherson.