Hackers from the UAC-0185 group attempted to attack Ukrainian defense companies and the Security and Defense Forces by sending phishing emails.
According to the State Service for Special Communications, the emails were disguised as official invitations from the Ukrainian Union of Industrialists and Entrepreneurs to a conference on December 5, which was dedicated to the products of domestic defense companies and NATO technical standards.
The emails contained a hyperlink with the text “The attachment contains important information for your participation.” Clicking on this link and opening the attached files could have infected the victims’ computers.
The UAC-0185 group has been active since 2022, in particular, stealing credentials from Signal, Telegram, WhatsApp messengers and military systems DELTA, TENET and Kropyva. In addition, hackers carry out cyberattacks to gain unauthorized access to computers of defense and security personnel.