Explore the latest cybersecurity insights and Ukraine-related infosec updates. Stay informed on threats, defenses, and cyber policy developments.
Search across headline titles and summaries.
Background for this topic.
Ukraine is a country in Eastern Europe which has been at the center of significant cyber security events and discussions, particularly in the context of information security. Given its geopolitical situation and ongoing military conflicts, Ukraine has been subjected to numerous cyber attacks that have had global security implications.
In the arena of information security, Ukraine has been a focal point for understanding cyber warfare and espionage. This tag encompasses news and discussions related to cyber threats emanating from or targeting Ukraine, including state-sponsored hacking, cyber defense strategies, and the overall impact of cyber activities on national and international security.
The information security context of Ukraine includes analysis of malware attacks, such as the notable NotPetya attack in 2017 which had a significant ripple effect on global businesses. It also involves examining Ukraine's cybersecurity policies, collaboration with other nations for cyber intelligence, and efforts to bolster its defenses against ongoing cyber threats.
Weekly headline count for the current query.
The Russia-linked state-sponsored threat actor known as APT28 (aka UAC-0001) has been attributed to attacks exploiting a newly disclosed security flaw in Microsoft Office as part of a campaign codenamed Operation Neusploit
Ukraine's Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office. [...]
The ZDI team offers an analysis on how CVE-2025-0411, a zero-day vulnerability in 7-Zip, was actively exploited to target Ukrainian organizations in a SmokeLoader campaign involving homoglyph attacks.
The targeted operation utilized CVE-2017-8570 as the initial vector and employed a notable custom loader for Cobalt Strike, yet attribution to any known threat actor remains elusive.
The infamous Russian threat actor has created a custom tool called GooseEgg to exploit CVE-2022-38028 in cyber-espionage attacks against targets in Ukraine, Western Europe, and North America.
Ukraine's Computer Emergency Response Team (CERT) is warning that the Russian hacking group Sandworm may be exploiting Follina, a remote code execution vulnerability in Microsoft Windows Support Diagnostic Tool (MSDT) currently tracked as CVE-2022-30190. [...]