TA471 Targets Ukrainian Government Websites With Malware (CERT-UA6060)
The TA471 threat group also known as Ember Bear Lorec53 and UAC-0056 targeted Ukrainian government websites.
The operation used custom backdoors web shells and tunneling tools including CredPump HoaxPen HoaxApe Ngrok and Gost to carry out the infection process.