| 1 JUNE |
SkyNews |
In an exclusive interview with Sky News, General Paul Nakasone confirmed for the first time that the US had "conducted a series of operations" in response to Russia's invasion of Ukraine. |
news.sky.com |
| 2 JUNE |
CERT-UA |
Cyberattack on Ukrainian state organizations using the Cobalt Strike Beacon malware and exploits to the vulnerabilities CVE-2021-40444 and CVE-2022-30190 |
cert.gov.ua |
| 5 JUNE |
SSSCIP of Ukraine |
Fake PsyOp campaign of bulk SMS to Ukrainian mobile numbers saying that the National Security and Defense Council had allegedly decided that Ukrainian mobile carriers should cease providing their services in Zaporizhzhia region |
cip.gov.ua |
| 6 JUNE |
SSSCIP of Ukraine |
Cyberattack on the OLL.TV service disrupts broadcasting of some Ukrainian TV channels (Football 1 & Indigo Ukraine, Ukraine 24, UA:First) |
cip.gov.ua |
| 7 JUNE |
SBU of Ukraine |
The SBU exposed the agent of the Russian Federation, who created 20 pro-Russian Internet media in Ukraine. The total audience of these resources had more than 2.2 million unique users per month. |
t.me/SBUkr |
| 9 JUNE |
VPM of Ukraine |
Starlink Ukraine received its operator license and is now reportedly the primary provider of electronic communication networks and services in Ukraine. |
twitter.com/FedorovMykhailo |
| 9 JUNE |
Mikhail Kasimov (@500mk500) |
Gamaredon Group activity IOCs - Q2 2022 |
otx.alienvault.com |
| 9 JUNE |
Cyware |
A new pro-Russian hacktivist group dubbed "Cyber Spetsnaz" leverages current geopolitical tensions between Ukraine and Russia to conduct cyberattacks |
cyware.com |
| 10 JUNE |
CERT-UA |
Massive cyberattack on Media Organizations of Ukraine using crescentImp malware, attributed to UAC-0113 (reportedly associated with the Sandworm group) |
cert.gov.ua |
| 14 JUNE |
RedDrip7 (QiAnXin) |
SFX sample from Gamaredon APT uses decree document of the Russian Federation government as bait |
twitter.com/reddrip7 |
| 14 JUNE |
KE-LA |
How the Cybercrime Landscape has been Changed following the Russia-Ukraine War |
ke-la.com |
| 16 JUNE |
U.S. Department of Justice |
Russian Botnet Disrupted in International Cyber Operation |
justice.gob |
| 20 JUNE |
CERT-UA |
UAC-0098 group cyberattack on critical infrastructure of Ukraine |
cert.gov.ua |
| 22 JUNE |
CERT-UA |
APT28 cyberattack using CredoMap malware |
cert.gov.ua |
| 21 JUNE |
Malwarebytes |
Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine |
blog.malwarebytes.com |
| 22 JUNE |
SEKOIA |
CALISTO APT continues its credential harvesting campaign |
blog.sekoia.io |
| 22 JUNE |
SecurityAffairs |
Cyber Spetsnaz is targeting government resources and critical infrastructure in Lithuania after the ban of Russian railway goods |
securityaffairs.co |
| 22 JUNE |
Unit42 PAN |
Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine (Updated June 22) |
unit42.paloaltonetworks.com |
| 22 JUNE |
CERT-UA |
Cyberattacks by China-associated groups against Russian scientific and technical enterprises and government agencies |
cert.gov.ua |
| 22 JUNE |
Microsoft |
Defending Ukraine: Early Lessons from the Cyber War (29 page PDF report) |
microsoft.com |
| 23 JUNE |
ISD |
In late May 2022, an organised campaign to dox members of the Ukrainian military began to spread across social media. The operators of this campaign claim to be a group of patriotic Russian hackers engaging in a volunteer effort they have dubbed Project Nemesis. |
isdglobal.org |
| 24 JUNE |
CERT-UA |
Cyberattack on Ukrainian telecommunications operators using the DarkCrystal RAT malware |
cert.gov.ua |
| 27 JUNE |
National Cyber Security Centre of Lithuania |
Intense DDoS attacks targeted several companies and institutions in Lithuania |
lrv.lt |
| 27 JUNE |
InQuest |
GlowSand, collections of maldocs related to war in Ukraine |
inquest.net |
| 27 JUNE |
@h2jazi |
Gamaredon APT maldoc |
twitter.com/h2jazi |
| 29 JUNE |
CyberPolice Ukraine |
Ukraine arrests cybercrime gang operating over 400 phishing sites |
bleepingcomputer.com |
| 29 JUNE |
BNN Bloomberg |
Mandiant Finds Possible Link Between Kremlin, Pro-Russian hacktivist group XakNet |
bnnbloomberg.ca |
| 29 JUNE |
SSU |
SSU prevents russian special services from hacking Ukrainian TV channels participating in national telethon, on the eve of the Constitution Day |
ssu.gov.ua |
| 30 JUNE |
Cyberscoop |
The Belarusian government-linked GhostWriter disinformation campaign tried in mid-June to push a rumor that Ukrainian male refugees in Poland would be identified and deported back to Ukraine for military service using fabricated government correspondence |
cyberscoop.com |