Cyber criminals are mass emailing letters posing as the NSDC – SSCS
Cybercriminals are mass emailing letters posing as the Apparatus of the National Security and Defense Council of Ukraine in order to get remote access to computers, reports the State Special Communications Service.
The cyberattacks are using Remote Utilities to target Ukrainian organizations and institutions.
The emails have the subject "RE: Urgent security update" and a RAR archive attached to them, named "KB5017371 security system update.rar". The archive contains a decoy image “instruction Important to read.jpg” and a split archive with an executable file “KB5017371.exe”.
Downloading, extracting, and running the contents of the archive will install a legitimate Remote Utilities program on your computer. It provides hidden remote access to the device to third parties, the SSCS notes.
As IMI reported, earlier, the SSCS reported hackers mass emailing letters posing as Ukrtelecom. The emails were mainly received by state authorities, possibly for espionage purposes.
Help us be even more cool!