New: 2026 Gartner® Market Guide for Adversarial Exposure Validation
Learn More
Cymulate named a Customers' Choice in 2025 Gartner® Peer Insights™
Learn More
New Research: Azure Arc Privilege Escalation & Identity Takeover
Learn More
An Inside Look at the Technology Behind Cymulate
Learn More
Book a Demo
Book a Demo

TA471 Targets Ukrainian Government Websites With Malware (CERT-UA6060)

February 26, 2023

The TA471 threat group also known as Ember Bear Lorec53 and UAC-0056 targeted Ukrainian government websites. The operation used custom backdoors web shells and tunneling tools including CredPump HoaxPen HoaxApe Ngrok and Gost to carry out the infection process.

Featured Resources

View More Resources
2026 Gartner® Market Guide for Adversarial Exposure Validation
Report

2026 Gartner® Market Guide for Adversarial Exposure Validation

The guide covers AEV use cases, key features, and market trends to improve threat exposure visibility and defenses.

Learn More
Security Spent a Decade Finding More. It Should Have Been Proving More. 
blog

Security Spent a Decade Finding More. It Should Have Been Proving More. 

Here's an uncomfortable truth most security leaders already suspect but rarely say out loud: Your organization has invested millions in security tools, and

Read More
Handala Hack: From Regional Disruption to Digital Destruction — Why Security Validation Matters Now 
blog

Handala Hack: From Regional Disruption to Digital Destruction — Why Security Validation Matters Now 

After years of battling ransomware and financially motivated threats, security teams must now increase their focus to defend against digital destruction. Iranian-backed Handala Hack highlighted the growing threat with its claimed attacks against a U.S.-based medical equipment maker, with reports of widespread deletion of data

Read More