UA EN RU
All topics
Topics
UA EN RU
Last news
Chechen leader in Strasbourg: Russian pseudo-opposition is Putin's soft power today, 16:10
Vitkoff named Putin's conditions for negotiations: Ukraine may have to concede today, 14:35
The USA set a deadline regarding Ukraine: may refuse peace efforts today, 14:10
The USA has outlined its vision for a ceasefire in Ukraine to Europeans today, 13:20
New Threat: Russia Tests Weapons of Mass Destruction on Ukrainians today, 12:55
The Armed Forces of Ukraine identified the disadvantages of fiber-optic drones today, 11:40
Enemy losses as of April 18, 2025 - General Staff of the Armed Forces of Ukraine today, 08:55
The enemy launched a missile strike on a densely populated area of Kharkiv: there are casualties today, 07:07
Shelling of Mykolaiv, Ukraine and the USA signed a memorandum: main news of the night today, 06:57
Rheinmetall factory in Ukraine will significantly exceed the planned 150 thousand shells today, 05:11
Trump commented on Zelensky and revealed when he expects a response from the Russian Federation regarding the ceasefire yesterday, 22:30
Germany has expanded its list of military aid to Ukraine: what is included yesterday, 22:18
Shelling of Sumy. Zelensky commented on Trump's statement that outraged Ukrainians yesterday, 20:01
Vovchansk, Liptsy and Kursk Region: Where Russia Concentrates the Most Troops on the Border yesterday, 13:20
Show more

Targeted cyberattacks on the defense sector recorded in Ukraine via a popular messenger.

19.03.2025 979
Shostal Oleksandr
Journalist Shostal Oleksandr
19.03.2025 979
Cyberattacks on the defense sector recorded
Cyberattacks on the defense sector recorded

The CERT-UA team has detected cyberattacks on employees of the defense industry and the Armed Forces of Ukraine.

In March 2025, messages containing reports were found in the Signal messenger. Some messages were sent from individuals with compromised accounts to increase trust.

Typically, these archives contain a .pdf file and an executable file named DarkTortilla. DarkTortilla is a crypter/loader used to launch the remote control program Dark Crystal RAT (DCRAT).

'It should be noted that this activity has been tracked under the identifier UAC-0200 since at least the summer of 2024. Meanwhile, starting in February 2025, the content of the bait messages relates to UAVs, electronic warfare means, etc. The use of popular messengers, both on mobile devices and computers, significantly expands the attack surface, including by creating uncontrolled (in terms of protection means) channels for information exchange,' - CERT-UA reported.

Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
Chechen leader in Strasbourg
Chechen leader in Strasbourg: Russian pseudo-opposition is Putin's soft power
today, 16:10 189
Ukraine, peace negotiations, concessions, Ukraine, Putin
Vitkoff named Putin's conditions for negotiations: Ukraine may have to concede
today, 14:35 281
The USA set a deadline regarding Ukraine: may refuse peace efforts
The USA set a deadline regarding Ukraine: may refuse peace efforts
today, 14:10 268
American flag and map of Ukraine
The USA has outlined its vision for a ceasefire in Ukraine to Europeans
today, 13:20 258
Russian Experiments on Weapons in Ukraine
New Threat: Russia Tests Weapons of Mass Destruction on Ukrainians
today, 12:55 287
Ukrainian Armed Forces drones on fiber optics: recognized shortcomings
The Armed Forces of Ukraine identified the disadvantages of fiber-optic drones
today, 11:40 275

Advertising