Read all Blogs from this Author
UAC-0006, a financially motivated cyber threat group, has resurfaced with a sophisticated phishing campaign targeting customers of Ukraine’s largest state-owned bank, PrivatBank. This campaign exploits password-protected archives containing malicious JavaScript, VBScript, and LNK files to bypass detection and deploy the SmokeLoader malware via process injection and PowerShell execution. With strong overlaps in tactics, techniques, and procedures (TTPs) with the notorious FIN7 and other Russian APTs, UAC-0006 aims to steal credentials and financial data while maintaining persistent access to compromised systems. Organizations must stay vigilant, enhance security awareness, and implement robust threat intelligence to counteract this growing cyber threat.
Discover how the Belsen Group exploited a zero-day vulnerability in 2022 to leak over 15,000 Fortigate firewall configurations, exposing sensitive credentials, firewall rules, and management certificates. This high-impact cyber incident, detailed in our analysis, highlights the risks of authentication bypass vulnerabilities and offers crucial mitigation strategies, including credential updates, firewall audits, and certificate rotation. Stay informed and secure your network against evolving threats with actionable insights from this comprehensive report.
Read all Whitepapers and reports from this Author
CloudSEK’s Middle East Threat Landscape Report 2025 reveals a sharp surge in cyber attacks led by state-aligned hacktivists, ransomware groups, and dark-web marketplaces. Finance, Government, and Telecom emerged as top targets, with 748+ coordinated incidents and escalating data leaks, extortion, and sector-specific breaches. A concise, high-impact report that leaders must read to understand 2025’s evolving threats
Read MoreRead all knowledge base articles from this Author
