Cybersecurity experts from CERT-UA, working for the State Special Communications Service, announced a new cyberattack against Ukrainians. E-mails containing viruses are sent to e-mail addresses in bulk.

Ukrainians receive letters allegedly related to Covid-19. They contain tables and the letter asks to open a list or enter some data. If you open the contents of the letter, the GraphSteel and GrimPlant viruses will be automatically downloaded to the victim’s computer. Attackers will then be able to access basic information about the user’s device.

The expert said the emails were sent with the help of a corrupt account of a government agency employee of Ukraine.

This attack is not the first from the UAC-0056 group. In March, criminals actively tried to gain access to Ukrainian data, using deception and deception, sending similar letters with viruses. At that time, scammers wrote about increasing the level of information security, as well as money debts.