New Cyber-Espionage Campaign Hits Europe: UAC-0063 Threat Actor Expands Operations

Summary: Bitdefender Labs has identified an active cyber-espionage campaign by the threat actor UAC-0063, which has shifted from Central Asia to target organizations in various European countries. This expansion highlights growing cybersecurity threats driven by geopolitical tensions in the region. The group employs sophisticated malware and tactics, drawing nuanced comparisons to the Russian APT28 group, albeit without definitive connections.

Affected: Government institutions and diplomatic missions in Europe

Keypoints :

  • UAC-0063 initially targeted Central Asia but has now expanded operations to Europe, including Germany, the UK, the Netherlands, Romania, and Georgia.
  • The campaign employs advanced techniques such as weaponized documents, USB data exfiltration, and keylogging for surveillance.
  • Recent tactics involve sending emails with malicious links to reduce detection rates and leveraging a complex command-and-control infrastructure.

Source: https://securityonline.info/new-cyber-espionage-campaign-hits-europe-uac-0063-threat-actor-expands-operations/