4.6 KiB
4.6 KiB
June Threat Reports
| Date | Source | Threat(s) | URL |
|---|---|---|---|
| 1 JUNE | SkyNews | In an exclusive interview with Sky News, General Paul Nakasone confirmed for the first time that the US had "conducted a series of operations" in response to Russia's invasion of Ukraine. | news.sky.com |
| 2 JUNE | CERT-UA | Cyberattack on Ukrainian state organizations using the Cobalt Strike Beacon malware and exploits to the vulnerabilities CVE-2021-40444 and CVE-2022-30190 | cert.gov.ua |
| 5 JUNE | SSSCIP of Ukraine | Fake PsyOp campaign of bulk SMS to Ukrainian mobile numbers saying that the National Security and Defense Council had allegedly decided that Ukrainian mobile carriers should cease providing their services in Zaporizhzhia region | cip.gov.ua |
| 6 JUNE | SSSCIP of Ukraine | Cyberattack on the OLL.TV service disrupts broadcasting of some Ukrainian TV channels (Football 1 & Indigo Ukraine, Ukraine 24, UA:First) | cip.gov.ua |
| 7 JUNE | SBU of Ukraine | The SBU exposed the agent of the Russian Federation, who created 20 pro-Russian Internet media in Ukraine. The total audience of these resources had more than 2.2 million unique users per month. | t.me/SBUkr |
| 9 JUNE | VPM of Ukraine | Starlink Ukraine received its operator license and is now reportedly the primary provider of electronic communication networks and services in Ukraine. | twitter.com/FedorovMykhailo |
| 9 JUNE | Mikhail Kasimov (@500mk500) | Gamaredon Group activity IOCs - Q2 2022 | otx.alienvault.com |
| 9 JUNE | Cyware | A new pro-Russian hacktivist group dubbed "Cyber Spetsnaz" leverages current geopolitical tensions between Ukraine and Russia to conduct cyberattacks | cyware.com |
| 10 JUNE | CERT-UA | Massive cyberattack on Media Organizations of Ukraine using crescentImp malware, attributed to UAC-0113 (reportedly associated with the Sandworm group) | cert.gov.ua |
| 14 JUNE | RedDrip7 (QiAnXin) | SFX sample from Gamaredon APT uses decree document of the Russian Federation government as bait | twitter.com/reddrip7 |
| 14 JUNE | KE-LA | How the Cybercrime Landscape has been Changed following the Russia-Ukraine War | ke-la.com |
| 20 JUNE | CERT-UA | UAC-0098 group cyberattack on critical infrastructure of Ukraine | cert.gov.ua |
| 22 JUNE | CERT-UA | APT28 cyberattack using CredoMap malware | cert.gov.ua |
| 21 JUNE | Malwarebytes | Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine | blog.malwarebytes.com |
| 22 JUNE | SEKOIA | CALISTO APT continues its credential harvesting campaign | blog.sekoia.io |
| 22 JUNE | SecurityAffairs | Cyber Spetsnaz is targeting government resources and critical infrastructure in Lithuania after the ban of Russian railway goods | securityaffairs.co |
| 22 JUNE | Unit42 PAN | Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine (Updated June 22) | unit42.paloaltonetworks.com |
| 22 JUNE | CERT-UA | Cyberattacks by China-associated groups against Russian scientific and technical enterprises and government agencies | cert.gov.ua |
| 22 JUNE | Microsoft | Defending Ukraine: Early Lessons from the Cyber War (29 page PDF report) | microsoft.com |
| 24 JUNE | CERT-UA | Cyberattack against Ukrainian telecommunications operators using the DarkCrystal RAT malware | cert.gov.ua |