Russian state-sponsored APT
Unknown Active
- Mentions
- 3
- First seen
- 09 Jun 2026
- Last seen
- 13 Jul 2026
Relevant to you · Relevant
- Threat focus:
- espionage / apt
- Sector / region:
- ManufacturingDACH
Origin
Unattributed
Profile
The Russian state-sponsored APT targets network devices such as routers to gain access. Official warnings emphasize the ongoing threat. Recently, a WinRAR vulnerability was exploited to attack Ukrainian organizations. This demonstrates the continued focus on Ukraine and the use of vulnerabilities in widely used software.
Affected vendors
Rarlab
Targeted regions
Eastern Europe
Targeted countries
UAUkraine
Linked CVEs
- CVE-2025-8088 KEV CVSS 8.8 EPSS 12%
Related actors
Share a CVE, technique or malware with this actor.