Hackers using Remcos malware to spy on Ukraine have become stealthier, researchers find

A hacker group that has been active since at least 2020, known as UAC-0050, is becoming more elusive and effective, according to cybersecurity firm Uptycs’ report. The group deploys the remote surveillance tool Remcos to attack Ukrainian government agencies and uses a new data transfer method involving “pipes” in the Windows operating system to evade antivirus systems. The group has also been active in the Baltic states and Russia.