UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

CERT-UA has disclosed a targeted malware campaign by threat actor UAC-0247, active between March and April, targeting Ukrainian government agencies and municipal healthcare institutions including clinics and emergency hospitals. The campaign delivers data-theft malware designed to exfiltrate sensitive information from Chromium-based web browsers and WhatsApp messaging application. This espionage-focused operation specifically targets critical infrastructure and government entities, potentially to gather intelligence or sensitive communications. Organizations in the healthcare and government sectors should ensure browser security configurations are hardened, apply multi-factor authentication, monitor for unusual data exfiltration, and maintain updated endpoint protection solutions.

The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted governments and municipal healthcare institutions, mainly clinics and emergency hospitals, to deliver malware capable of stealing sensitive data from Chromium-based web browsers and WhatsApp. The activity, which was observed between March and April

CERT-UA has disclosed a targeted malware campaign by threat actor UAC-0247, active between March and April, targeting Ukrainian government agencies and municipal healthcare institutions including clinics and emergency hospitals. The campaign delivers data-theft malware designed to exfiltrate sensitive information from Chromium-based web browsers and WhatsApp messaging application. This espionage-focused operation specifically targets critical infrastructure and government entities, potentially to gather intelligence or sensitive communications. Organizations in the healthcare and government sectors should ensure browser security configurations are hardened, apply multi-factor authentication, monitor for unusual data exfiltration, and maintain updated endpoint protection solutions. The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted governments and municipal healthcare institutions, mainly clinics and emergency hospitals, to deliver malware capable of stealing sensitive data from Chromium-based web browsers and WhatsApp. The activity, which was observed between March and April The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted governments and municipal healthcare institutions, mainly clinics and emergency hospitals, to deliver malware capable of stealing sensitive data from Chromium-based web browsers and WhatsApp. The activity, which was observed between March and April