SOC PrimeDec 16, 2024
#CERTUA alerts on #UAC0099 cyber-espionage attacks against Ukrainian state bodies spreading LONEPAGE #malware. Detect adversary activity with curated #Sigma rules from SOC Prime Platform.
https://socprime.com/blog/uac-0099-cyber-espionage-attacks-detection/?utm_source=mastodon&utm_medium=social&utm_campaign=cert-ua&utm_content=blog-post
UAC-0099 Attack Detection: Cyber-Espionage Activity Against Ukrainian State Agencies Using WinRAR Exploit and LONEPAGE Malware - SOC Prime

Detect UAC-0099 attacks against Ukraine exploiting CVE-2023-38831 and spreading LONEPAGE malware with Sigma rules from SOC Prime.

SOC Prime