Russia’s APT28 used new malware in a recent phishing campaign

Ukraine’s Computer Emergency Response Team (CERT-UA) has warned of a new cyber-espionage campaign conducted by Russia-linked group APT28, which uses yet unidentified malware strains including OCEANMAP, MASEPIE, and STEELHOOK to steal target network data. The attacks target government organizations through phishing emails prompting recipients to download a seemingly innocuous document that initiates the malware download.