Lindsey O’Donnell-Welch reports:
A known Russia-linked threat group has been targeting an array of organizations in Ukraine – including government, military, law enforcment, non-profit and judiciary entities – in an attempt to steal sensitive data.
Microsoft detailed several malware campaigns over the past six months by the Actinium threat group (also known as Gamaredon or Primitive Bear). This group has been operational for almost a decade, with several researchers over the years noting that the group’s operations align with Russian interests. In November, the Security Service of Ukraine (SSU) publicly attributed the group’s leadership to the Russian Federal Security Service (FSB).
Read more at Decipher.