UA EN RU
All topics
Topics
UA EN RU
Last news
Easter greeting from the President of Ukraine 2025: unity of the nation and the situation at the front today, 10:45
Enemy losses as of April 20, 2025 - General Staff of the Armed Forces of Ukraine today, 08:37
Zelensky called Russia one of the greatest threats to believers in Easter address today, 04:14
Easter Truce: Zelensky Named the Condition for Full Silence on the Front yesterday, 22:40
Former MP who fled Ukraine was spotted in Jerusalem yesterday, 18:35
Ukrainian Permanent Representative to the UN Melnyk urged Merz to provide weapons to Ukraine: full list yesterday, 16:45
'They are not touched by the TCC': the colonel of the Armed Forces of Ukraine said where to find prepared reserves for the army yesterday, 14:30
Fines from the TSK: which regions lead in the number of proceedings yesterday, 10:00
Enemy losses as of April 19, 2025 – General Staff of the Armed Forces of Ukraine yesterday, 08:56
How to solve the mobilization problem? A well-known military figure named the event that will awaken the country yesterday, 06:55
Kremlin threatens Germany over Taurus missiles for Ukraine yesterday, 03:27
Poland has imposed a ban on photographing military objects yesterday, 01:47
Almost 100 Russian soldiers attempted to escape from a military unit in Russia yesterday, 00:47
Chechen leader in Strasbourg: Russian pseudo-opposition is Putin's soft power 18.04.2025
Show more

Targeted cyberattacks on the defense sector recorded in Ukraine via a popular messenger.

19.03.2025 1007
Shostal Oleksandr
Journalist Shostal Oleksandr
19.03.2025 1007
Cyberattacks on the defense sector recorded
Cyberattacks on the defense sector recorded

The CERT-UA team has detected cyberattacks on employees of the defense industry and the Armed Forces of Ukraine.

In March 2025, messages containing reports were found in the Signal messenger. Some messages were sent from individuals with compromised accounts to increase trust.

Typically, these archives contain a .pdf file and an executable file named DarkTortilla. DarkTortilla is a crypter/loader used to launch the remote control program Dark Crystal RAT (DCRAT).

'It should be noted that this activity has been tracked under the identifier UAC-0200 since at least the summer of 2024. Meanwhile, starting in February 2025, the content of the bait messages relates to UAVs, electronic warfare means, etc. The use of popular messengers, both on mobile devices and computers, significantly expands the attack surface, including by creating uncontrolled (in terms of protection means) channels for information exchange,' - CERT-UA reported.

Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
President Easter Greetings: unity and front
Easter greeting from the President of Ukraine 2025: unity of the nation and the situation at the front
today, 10:45 184
Enemy losses as of April 20, 2025
Enemy losses as of April 20, 2025 - General Staff of the Armed Forces of Ukraine
today, 08:37 261
Zelensky speaks on Easter theme
Zelensky called Russia one of the greatest threats to believers in Easter address
today, 04:14 428
Zelensky speaks at a press conference before the Easter holidays
Easter Truce: Zelensky Named the Condition for Full Silence on the Front
yesterday, 22:40 554
Former MP spotted in Jerusalem
Former MP who fled Ukraine was spotted in Jerusalem
yesterday, 18:35 643
Melnyk urges Merz to provide weapons to Ukraine
Ukrainian Permanent Representative to the UN Melnyk urged Merz to provide weapons to Ukraine: full list
yesterday, 16:45 649

Advertising