Викриття Spy letters to have been sent out by Ukrtelecom
The Government computer emergency response team of Ukraine (CERT-UA) recorded the distribution of emails on behalf of JSC Ukrtelecom.
The subject of the letter was about a legal claim on a personal account. A file with the “pdf.exe” format was attached to the letters, after launching of which the Remcos remote control and monitoring program was installed on the user’s computer. This application is payable and can be purchased from the manufacturer's website. Similar attempts have been repeatedly recorded since 2020. Previous cyberattacks have been carried out using the RemoteUtilities remote administration program. Letters were sent mainly to public authorities. Probably for espionage.
Earlier, experts said that Ukraine beats off from 5 to 40 powerful DDoS attacks every day.