Ukraine Cybersecurity Agency Impersonated: 1 Million Emails Targeted with AGEWHEEZE Malware

A recent phishing campaign has been uncovered by the Computer Emergency Response Team of Ukraine (CERT-UA), where the agency’s identity was impersonated to spread a remote administration tool called AGEWHEEZE.

The campaign, conducted by threat actors known as UAC-0255, involved sending emails on March 26 and 27, 2026, disguised as legitimate communications from CERT-UA.

The emails contained a password-protected ZIP archive, which, when opened, would install the AGEWHEEZE malware on the victim’s system, potentially allowing the attackers to gain remote access.

This large-scale campaign is reported to have targeted approximately 1 million emails, highlighting the severity of the threat and the importance of vigilance in the face of such sophisticated phishing attempts.

Given the nature of the attack, it is crucial for individuals and organizations to be cautious when receiving emails, even if they appear to come from trusted sources like CERT-UA, and to implement robust cybersecurity measures to prevent such threats.

By staying informed about the latest cybersecurity threats and adopting best practices for email security, users can significantly reduce the risk of falling victim to phishing campaigns like this one.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

The Evolution of Enterprise Security: Moving Beyond ‘Doctor No’

WhatsApp VBS Malware Warning: Microsoft Sounds Alarm on UAC Bypass Threat