Operation Poison Needles
0 incidentes
0 paises
0 sectores
apt UA Ultimo: -
Operation Poison Needles is a cyber-espionage threat actor that first emerged in December 2018 with the public disclosure of their activities by Qihoo 360. This group is assessed with high confidence by intelligence professionals to be of Ukrainian origin. Their primary motivation is cyber-espionage, specifically targeting sensitive information, as evidenced by their initial documented campaign which focused on a Russian government-affiliated medical institution. This group is distinguished by its use of a zero-day exploit in Adobe Flash, identified as CVE-2018-15982, for initial access, demonstrating a unique technical capability. The initial attack's timing, coinciding with the Kerch Strait Incident, suggests a politically motivated objective. The group has no publicly known aliases.