Ukraine Aid Groups Targeted Through Fake Zoom Meetings and Weaponized PDF Files
Ukraine Aid Groups Targeted Through Fake Zoom Meetings and Weaponized PDF Files
22 October 2025
Cybersecurity researchers have disclosed details of a coordinated spear-phishing campaign dubbed PhantomCaptcha targeting organizations associated with Ukraine's war relief efforts to deliver a remote access trojan that uses a WebSocket for command-and-control (C2).
The activity, which took place on October 8, 2025, targeted individual members of the International Red Cross, Norwegian Refugee