Ukrainian state agencies targeted with open-source malware MerlinAgent

Hackers targeted Ukrainian government agencies with a phishing campaign using an open-source program called MerlinAgent, according to the latest research. In early August, an unidentified threat actor tracked as UAC-0154 sent malicious emails to its targets, purportedly containing security tips from Ukraine's computer emergency response team (CERT-UA). These emails contained malicious attachments that infected victims'

actor attachments august briefs called campaign cert cert-ua computer computer emergency response team emails emergency government hackers latest malicious malware open-source malware phishing phishing campaign program research response security security tips state team threat threat actor tips uac ukraine ukrainian