Mastodawn

SOC Prime Dec 18, 2024

#CERTUA alerts cyber defenders about new attacks on Ukraine by #UAC0125, using fake websites that imitate the "Army+" app page, hosted via Cloudflare Workers. Detect #cyberattacks with Sigma rules and explore campaign details on our blog.
https://socprime.com/blog/uac-0125-attacks-against-ukraine-detection/?utm_source=mastodon&utm_medium=social&utm_campaign=cert-ua&utm_content=blog-post

UAC-0125 Attack Detection: Hackers Use Fake Websites on Cloudflare Workers to Exploit the "Army+" Application - SOC Prime

Detect UAC-0125 attacks against Ukraine exploiting the “Army+” app to gain remote access to targeted systems with Sigma rules from SOC Prime.

SOC Prime