An active Gamaredon campaign targeting Ukrainian government, military, and critical infrastructure entities is revealing a sophisticated, nearly entirely fileless infection chain built around native Windows features and legitimate cloud services, according to new findings published by Sekoia.io. The Russia-linked APT, officially attributed to the FSB and also tracked as ACTINIUM, Armageddon, and UAC-0010, was identified in […]
The post Gamaredon APT Hides Malware in Windows Features, Uses Cloud C2 appeared first on Cyber Security News.