Update June.md

2022-06-24 22:06:18 +01:00 · 2022-06-24 22:06:18 +01:00 · 46514a1eae
--- a/Reports/June.md
+++ b/Reports/June.md
@ -8,4 +8,16 @@
 | 7 JUNE | SBU of Ukraine | The SBU exposed the agent of the Russian Federation, who created 20 pro-Russian Internet media in Ukraine. The total audience of these resources had more than 2.2 million unique users per month. | [t.me/SBUkr](https://t.me/SBUkr/4407) |
 | 9 JUNE | VPM of Ukraine | Starlink Ukraine received its operator license and is now reportedly the primary provider of electronic communication networks and services in Ukraine. | [twitter.com/FedorovMykhailo](https://twitter.com/FedorovMykhailo/status/1534817983201218560) |
 | 9 JUNE | Mikhail Kasimov (@500mk500) | Gamaredon Group activity IOCs - Q2 2022 | [otx.alienvault.com](https://otx.alienvault.com/pulse/62a1bf5273a6c5f00e51cc45) |
+| 9 JUNE | Cyware | A new pro-Russian hacktivist group dubbed "Cyber Spetsnaz" leverages current geopolitical tensions between Ukraine and Russia to conduct cyberattacks | [cyware.com](https://cyware.com/news/cyber-spetsnazs-operation-panopticon-launches-espionage-attacks-3d49eade)  |
 | 10 JUNE | CERT-UA | Massive cyberattack on Media Organizations of Ukraine using crescentImp malware, attributed to UAC-0113 (reportedly associated with the Sandworm group) | [cert.gov.ua](https://cert.gov.ua/article/160530) |
+| 14 JUNE | RedDrip7 (QiAnXin) | SFX sample from Gamaredon APT uses decree document of the Russian Federation government as bait  | [twitter.com/reddrip7](https://twitter.com/reddrip7/status/1536548636741738496)  |
+| 14 JUNE | KE-LA | How the Cybercrime Landscape has been Changed following the Russia-Ukraine War | [ke-la.com](https://ke-la.com/how-the-cybercrime-landscape-has-been-changed-following-the-russia-ukraine-war/)  |
+| 20 JUNE | CERT-UA | UAC-0098 group cyberattack on critical infrastructure of Ukraine | [cert.gov.ua](https://cert.gov.ua/article/339662)  |
+| 22 JUNE | CERT-UA | APT28 cyberattack using CredoMap malware | [cert.gov.ua](https://cert.gov.ua/article/341128)  |
+| 21 JUNE | Malwarebytes | Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine | [blog.malwarebytes.com](https://blog.malwarebytes.com/threat-intelligence/2022/06/russias-apt28-uses-fear-of-nuclear-war-to-spread-follina-docs-in-ukraine/)  |
+| 22 JUNE | SEKOIA | CALISTO APT continues its credential harvesting campaign | [blog.sekoia.io](https://blog.sekoia.io/calisto-continues-its-credential-harvesting-campaign/) |
+| 22 JUNE | SecurityAffairs | Cyber Spetsnaz is targeting government resources and critical infrastructure in Lithuania after the ban of Russian railway goods | [securityaffairs.co](https://securityaffairs.co/wordpress/132518/hacktivism/lithuania-under-cyber-attack.html)  |
+| 22 JUNE | Unit42 PAN | Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine (Updated June 22) | [unit42.paloaltonetworks.com](https://unit42.paloaltonetworks.com/gamaredon-primitive-bear-ukraine-update-2021/)  |
+| 22 JUNE | CERT-UA | Cyberattacks by China-associated groups against Russian scientific and technical enterprises and government agencies | [cert.gov.ua](https://cert.gov.ua/article/375404) |
+| 22 JUNE | Microsoft | Defending Ukraine: Early Lessons from the Cyber War (29 page PDF report) | [microsoft.com](https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE50KOK)  |
+| 24 JUNE | CERT-UA | Cyberattack against Ukrainian telecommunications operators using the DarkCrystal RAT malware | [cert.gov.ua](https://cert.gov.ua/article/405538) |