CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Russia-Linked Gamaredon Uses Troop-Related Lures to Deploy Remcos RAT in Ukraine
Description: Entities in Ukraine have been targeted as part of a phishing campaign designed to distribute a remote access trojan called Remcos RAT. "The file names use Russian words related to the movement of troops in Ukraine as a lure," Cisco Talos researcher Guilherme Venere said in a report published last week. "The PowerShell downloader contacts geo-fenced servers located in Russia and Germany to
Source: TheHackerNews
March 31st, 2025 (3 months ago)
Gamaredon campaign abuses LNK files to distribute Remcos backdoor
Description: Cisco Talos is actively tracking an ongoing campaign, targeting users in Ukraine with malicious LNK files which run a PowerShell downloader since at least November 2024.
Source: Cisco Talos Blog
March 28th, 2025 (3 months ago)
Ukraine’s state railway restores online ticket sales after major cyberattack
Description: Ukraine’s state railway operator, Ukrzaliznytsia, has resumed online ticket sales after a cyberattack brought down its systems earlier in the week.
Source: The Record
March 27th, 2025 (3 months ago)
Lengthy disruption of Russian internet provider claimed by Ukrainian hacker group
Description: A multi-day outage of internet services by Lovit — a widely used provider in cities such as Moscow and St. Petersburg — was claimed by the IT Army, a pro-Ukraine hacking group.
Source: The Record
March 25th, 2025 (3 months ago)
Cyberattack takes down Ukrainian state railway’s online services
Description: Ukrzaliznytsia, Ukraine's national railway operator, has been hit by a massive cyberattack that disrupted online services for buying tickets both through mobile apps and the website. [...]
Source: BleepingComputer
March 24th, 2025 (3 months ago)
Cyberattack hits Ukrainian state railway, disrupting online ticket sales
Description: Ukrzaliznytsia, Ukraine's state-owned railway operator, said a large-scale cyberattack had disrupted online ticket sales, but not train schedules.
Source: The Record
March 24th, 2025 (3 months ago)
Ukraine Defense Sector Under Attack Via Dark Crystal RAT
Description: The UNC-200 threat group, active since last summer, has been utilizing the Signal messaging app to social engineer targets into downloading an infostealing remote access Trojan.
Source: Dark Reading
March 20th, 2025 (3 months ago)
Use of Russian technology products and services following the invasion of Ukraine
Description: Cyber security – even in a time of global unrest – remains a balance of different risks. Ian Levy, the NCSC's Technical Director, explains why.
Source: NCSC Alerts and Advisories
March 20th, 2025 (3 months ago)
CERT-UA Warns: Dark Crystal RAT Targets Ukrainian Defense via Malicious Signal Messages
Description: The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a new campaign that targets the defense sectors with Dark Crystal RAT (aka DCRat). The campaign, detected earlier this month, has been found to target both employees of enterprises of the defense-industrial complex and individual representatives of the Defense Forces of Ukraine. The activity involves
Source: TheHackerNews
March 20th, 2025 (3 months ago)
Ukrainian military targeted in new Signal spear-phishing attacks
Description: Ukraine's Computer Emergency Response Team (CERT-UA) is warning about highly targeted attacks employing compromised Signal accounts to send malware to employees of defense industry firms and members of the country's army forces. [...]
Source: BleepingComputer
March 19th, 2025 (3 months ago)