TA471 Targets Ukrainian Government Websites With Malware (CERT-UA6060)
The TA471 threat group also known as Ember Bear Lorec53 and UAC-0056 targeted Ukrainian government websites.
The operation used custom backdoors web shells and tunneling tools including CredPump HoaxPen HoaxApe Ngrok and Gost to carry out the infection process.
Featured Resources
View More Resources
blog
Critical RCE in React Server Components CVE-2025-55182 and CVE-2025-66478: What It Means for Security Teams
Ilan Kalendarov, Security Research Team LeadBen Zamir, Security Researcher What was discovered? A critical un-authentication remote code execution (RCE) vulnerability has been disclosed in React
blog
Test LLM Resilience Against Prompt Injection and Jailbreaks with New Cymulate Attack Scenarios
Executive Summary As large language models (LLMs) become embedded in productivity, automation and security workflows, a new class of risks
blog
Testing LLM Resilience: How Cymulate Exposure Validation Simulates Prompt Injection and Jailbreaks
See how Cymulate is redefining LLM security by simulating real-world prompt injection and jailbreak attacks to validate AI defenses.