Ukraine's Computer Emergency Response Team (CERT-UA) is warning that the Gamaredon hacking operates in rapid attacks, stealing data from breached systems in under an hour.
Gamaredon, aka Armageddon, UAC-0010, and Shuckworm, is a Russian, state-sponsored cyber-espionage hacking group with cybersecurity researchers linking them to the FSB (Russian Federal Security Service) and having members who are former SSU officers who defected to Russia in 2014.
Since the start of the Russian invasion, the threat actors are believed to be responsible for thousands of attacks against the government and other critical public and private organizations in Ukraine.
The accumulation of data from these attacks has enabled CERT-UA to outline the group's attacks, which it shares to help defenders detect and stop network infiltration attempts.
![[correlate]](/data/avatars/m/79/79653.jpg?1556985072){kind=avatar}
