Targeting of Ukrainian organizations
Date of report
  • April 2022
Russian threat actor Gamaredon targeted Ukrainian organizations in a phishing campaign. The hackers sent malicious emails with lures related to the Russia-Ukraine conflict, including attachments labeled “Information on war criminals of the Russian Federation” and “Necessary_military_assistance.” The emails contained malware that allowed Russian operators to conduct espionage.
Suspected victims
  • Ukrainian government and civil society organizations
Suspected state sponsor
  • Russian Federation
Type of incident
  • Espionage
Target category
  • Government
  • Civil society
Victim government reaction
  • Yes
Policy response