The UAC-0212 threat group has intensified attacks on Ukraine’s critical infrastructure since July 2024, targeting energy, water, and logistics sectors. Using phishing emails with malicious PDFs, they exploit vulnerabilities to deploy malware like SECONDBEST and SPARK. CERT-UA advises organizations to monitor suspicious activities, rotate passwords, and implement stringent security measures to mitigate risks.
GitVenom Campaign Abusing Thousands of GitHub Repositories To Infect Users
The “GitVenom” malware campaign exploits GitHub’s ecosystem, distributing malicious code via fraudulent repositories targeting developers. Active since 2023, it uses social engineering to disguise malware
