As reported by Ukrinform, State Private Communications reported this on Telegram.

“On October 21, experts of the government computer emergency response team of Ukraine CERT-UA (https://cert.gov.ua/) discovered the fact that alleged emails were distributed on behalf of the General’s press service. Armed Forces Personnel Messages , the “order” contained a link to download, after clicking it, the victim went to a page with a message about the need to update the software (PDF Reader). Clicking the “Download” button leads to the download of the RomCom malicious program, “says the message.

Analyzing the malicious activity, experts concluded that it was related to the activities of Tropical Scorpius (Unit42), aka UNC2596 (Mandiant), group responsible for the spread of Cuba Ransomware malware.

On October 21, the Ukrainian security and defense forces noted that dangerous emails and messages were sent to reporters not only on behalf of the press service of the General Staff of the Armed Forces of Ukraine, but also on behalf of the Security Service of Ukraine. . It is possible that similar messages are allegedly received on behalf of other organizations that ensure the protection of the state.

The State Security Service urged citizens to adhere to cyber hygiene rules and always be vigilant and attentive to the messages they receive.

As reported by Ukrinform, Cyber ​​Security Month will be held throughout October in the USA, European Union countries and Ukraine. Its purpose is to draw the attention of society to issues of cyber protection and the need for responsible behavior by everyone in cyberspace.