Sign in Create account

#uac0050 — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #uac0050, aggregated by home.social.

TechNadu @[email protected] · 2026-02-25 · 11:24 UTC

Operational summary:
Threat actor: UAC-0050
Alias: DaVinci Group / Mercenary Akula (per BlueVoyant)
Tooling: RMS (Remote Manipulator System)
Delivery: Spear-phishing, spoofed judicial domain, layered archives
TTP alignment consistent with reporting from CERT-UA.
Strategic overlay:
Russia-nexus actors, including APT29, continue high-confidence trust exploitation campaigns, as outlined by CrowdStrike.
Detection priorities:
- Monitor MSI execution anomalies
- Flag double-extension binaries
- Inspect outbound RMS traffic
- Harden executive email authentication
Follow for tactical intelligence briefings.
Comment with detection engineering recommendations.
#Infosec #ThreatIntel #UAC0050 #APT29 #RMS #SpearPhishing #DetectionEngineering #CyberEspionage #SOC #BlueTeam #SecurityOperations

#infosec #threatintel #uac0050 #apt29 #rms #spearphishing
Pyrzout :vm: @[email protected] · 2024-10-31 · 18:00 UTC

UAC-0050 Phishing Attack Detection: The russia-Backed Group Massively Spreads Tax-Related Phishing Emails and Exploit LITEMANAGER – Source: socprime.com https://ciso2ciso.com/uac-0050-phishing-attack-detection-the-russia-backed-group-massively-spreads-tax-related-phishing-emails-and-exploit-litemanager-source-socprime-com/ #ThreatDetectionMarketplace #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #Latestthreats #CERT-UA11776 #socprimecom #socprime #CERT-UA #UAC0050 #Blog

#threatdetectionmarketplace #rssfeedpostgeneratorecho #cybersecuritynews #socprimeplatform #latestthreats #cert
Pyrzout :vm: @[email protected] · 2024-10-31 · 18:00 UTC

UAC-0050 Phishing Attack Detection: The russia-Backed Group Massively Spreads Tax-Related Phishing Emails and Exploit LITEMANAGER – Source: socprime.com https://ciso2ciso.com/uac-0050-phishing-attack-detection-the-russia-backed-group-massively-spreads-tax-related-phishing-emails-and-exploit-litemanager-source-socprime-com/ #ThreatDetectionMarketplace #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #Latestthreats #CERT-UA11776 #socprimecom #socprime #CERT-UA #UAC0050 #Blog

#blog #uac0050 #socprime #socprimecom #cert #latestthreats
Pyrzout :vm: @[email protected] · 2024-10-31 · 18:00 UTC

UAC-0050 Phishing Attack Detection: The russia-Backed Group Massively Spreads Tax-Related Phishing Emails and Exploit LITEMANAGER – Source: socprime.com https://ciso2ciso.com/uac-0050-phishing-attack-detection-the-russia-backed-group-massively-spreads-tax-related-phishing-emails-and-exploit-litemanager-source-socprime-com/ #ThreatDetectionMarketplace #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #Latestthreats #CERT-UA11776 #socprimecom #socprime #CERT-UA #UAC0050 #Blog

#threatdetectionmarketplace #rssfeedpostgeneratorecho #cybersecuritynews #socprimeplatform #latestthreats #cert