"Threat Group Using Rare Data Transfer Tactic in New RemcosRAT Campaign"

An adversary, tracked as UNC-0050, known for using the RemcosRAT remote surveillance and control tool against organizations in Ukraine, is back with a new method to transfer data that evades Endpoint Detection and Response (EDR) systems. In its latest campaign, the threat actor focuses on Ukrainian government entities. According to researchers at Uptycs, the attacks are likely politically motivated, to gather specific intelligence from Ukrainian government agencies. This article continues to discuss UNC-0050 targeting government agencies in Ukraine in a politically motivated intelligence-gathering operation.

Dark Reading reports "Threat Group Using Rare Data Transfer Tactic in New RemcosRAT Campaign"

Submitted by grigby1

Submitted by Gregory Rigby on