Targeting of Ukrainian organizations in phishing campaign
Date of report
  • May 2022
APT 28 sent phishing emails masquerading as the Computer Emergency Response Team of Ukraine (CERT-UA) with the subject line "Cyberattack.” The email included a malware-laced attachment enabling APT 28 to gather and steal data.
Suspected victims
  • Ukrainian organizations
Suspected state sponsor
  • Russian Federation
Type of incident
  • Espionage
Target category
  • Government
Victim government reaction
  • Yes
Policy response