UA EN RU
All topics
Topics
UA EN RU
Last news
Border guards named the directions where the enemy is most active today, 14:35
The general of the occupying army Moskalyk was blown up near Moscow today, 14:14
Ukraine Takes Control Over Peace Process: New Plan Prevents Russia from Threatening NATO today, 13:45
NATO Secretary General: Russia is a long-term threat to the Alliance today, 13:20
The enemy is regrouping near Pokrovsk today, 12:30
Russia has intensified the development of naval drones today, 11:40
The government simplified the import of components for ammunition production today, 10:25
The Atlantic: Trump's Plan for Ukraine is Not Peace, but Capitulation today, 10:00
Enemy Losses as of April 25, 2025 – General Staff of the Armed Forces of Ukraine today, 08:56
Russia intensified assaults under the cover of a massive strike - Zelensky today, 04:27
Russia struck Kharkiv with 'shaheds': fires broke out in the city today, 02:02
Special Tribunal for Russia: Agreement May Be Signed Soon today, 01:38
Front line as of April 24, 2025. Summary of the General Staff yesterday, 23:44
Aggressor - one: Macron addressed Trump after Russia's attack on Ukraine yesterday, 23:02
Show more

Targeted cyberattacks on the defense sector recorded in Ukraine via a popular messenger.

19.03.2025 1361
Shostal Oleksandr
Journalist Shostal Oleksandr
19.03.2025 1361
Cyberattacks on the defense sector recorded
Cyberattacks on the defense sector recorded

The CERT-UA team has detected cyberattacks on employees of the defense industry and the Armed Forces of Ukraine.

In March 2025, messages containing reports were found in the Signal messenger. Some messages were sent from individuals with compromised accounts to increase trust.

Typically, these archives contain a .pdf file and an executable file named DarkTortilla. DarkTortilla is a crypter/loader used to launch the remote control program Dark Crystal RAT (DCRAT).

'It should be noted that this activity has been tracked under the identifier UAC-0200 since at least the summer of 2024. Meanwhile, starting in February 2025, the content of the bait messages relates to UAVs, electronic warfare means, etc. The use of popular messengers, both on mobile devices and computers, significantly expands the attack surface, including by creating uncontrolled (in terms of protection means) channels for information exchange,' - CERT-UA reported.

Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
Border guards named the directions where the enemy is most active
Border guards named the directions where the enemy is most active
today, 14:35 87
Blown up general of the occupying army Moskalyk
The general of the occupying army Moskalyk was blown up near Moscow
today, 14:14 91
Ukraine controls the peace process
Ukraine Takes Control Over Peace Process: New Plan Prevents Russia from Threatening NATO
today, 13:45 91
NATO Secretary General
NATO Secretary General: Russia is a long-term threat to the Alliance
today, 13:20 87
Enemy regrouping near Pokrovsk
The enemy is regrouping near Pokrovsk
today, 12:30 211
Development of naval drones in Russia
Russia has intensified the development of naval drones
today, 11:40 206

Advertising