Ghostwriter attacks Ukraine with phishing and geolocated Cobalt Strike
Source: Foro3D
Published:
<p>The Ghostwriter group has struck again against the Ukrainian government, using a geolocalized phishing campaign. Attackers send PDF files that, when opened, deploy the Cobalt Strike malware. This geofencing tactic activates the attack only if the victim is in a specific location, making analysis