Russian threat actor APT 28 targeted Ukrainian internet users with a new malware variant. The malware was sent to targets via email attachments titled “ua_report.zip.” When executed, the malware enables hackers to steal and exfiltrate cookies and saved passwords from Chrome, Edge, and Firefox browsers.