Domains Associated with Phishing Directed Against Ukraine

Researchers from Secureworks’ Counter Threat Unit (CTU) are tracking phishing domains used by the “MOONSCAPE” threat actor to target users in Ukraine. The researchers note that Ukraine’s Computer Emergency Response Team (CERT-UA) has attributed this campaign to the Belarusian threat actor UNC1151, but Secureworks hasn’t yet confirmed this attribution. Belarus is one of Russia’s closest allies, and is assisting in Moscow’s war against Ukraine.

originally published on

Related posts

FBI Warns of Phishing Attacks Targeting Election Officials


Cisco: Web 3.0 Will be the Next Frontier for Social Engineering and Phishing Attacks


Dark Web Service Sells Access to Compromised Accounts and Browser Sessions