"Phishing Campaign Compromises 100+ Ukrainian Government Computers"
The Computer Emergency Response Team of Ukraine (CERT-UA) recently announced that more than 100 Ukrainian government computers have been compromised following a mass phishing campaign. It was noted that the attackers impersonated the Security Service of Ukraine in the emails to lure targets into clicking on a malicious link that leads to ANONVNC malware being downloaded onto the device. The link purportedly enables the user to download a file named "Документи.zip," translated as "Documents.zip." Clicking the link will enable an MSI file to be downloaded to the computer, and opening the file will launch ANONVNC.
CERT-UA noted that ANONVNC is based on an open-source configuration tool, MESHAGENT, the source code of which is available on GitHub. The agency added that this malware creates "technical opportunities" for attackers to gain hidden unauthorized access to the infected computer. CERT-UA said it has taken urgent measures to prevent cyber incidents arising from this campaign.
Infosecurity Magazine reports: "Phishing Campaign Compromises 100+ Ukrainian Government Computers"