Ukraine Government Sector Targeted With The DolphinCape Information Stealer
The government sector of Ukraine was targeted with spear-phishing emails with a malicious attachment which appeared to be sent from the State Emergency Service of Ukraine.
Opening the attachment resulted in VBScript code creating a scheduled task for persistence and a PowerShell script downloading the DolphinCape information stealer.
The malicious software is capable of exfiltrating system information as well as screenshots of the infected device.
Featured Resources
View More Resources
Handala Hack: From Regional Disruption to Digital Destruction — Why Security Validation Matters Now
After years of battling ransomware and financially motivated threats, security teams must now increase their focus to defend against digital destruction. Iranian-backed Handala Hack highlighted the growing threat with its claimed attacks against a U.S.-based medical equipment maker, with reports of widespread deletion of data
CVE-2026-26117: Hijacking Azure Arc on Windows for Local Privilege Escalation & Cloud Identity Takeover
CVE-2026-26117 lets attackers hijack Azure Arc on Windows, escalate to SYSTEM, and seize the machine’s cloud identity.
Exposure Validation Demo
Demo of automated offensive simulations validating detection, prevention, and IOC coverage