APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

Updated on March 10, 2026

The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants dubbed BEARDSHELL and COVENANT to facilitate long‑term surveillance of Ukrainian military personnel.
The two malware families have been put to use since April 2024, ESET said in a new report shared with The Hacker News.
APT28, also tracked as Blue Athena, BlueDelta, Fancy Bear, Fighting Ursa,…

Read the rest of the story at Read More

Source: The Hacker News

December 5, 2023 Uncategorized

New Threat Actor ‘AeroBlade’...

August 15, 2024 Uncategorized

GitHub Vulnerability ‘ArtiPACKED&#...

June 12, 2025 Uncategorized

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

Related posts

New Threat Actor ‘AeroBlade’...

GitHub Vulnerability ‘ArtiPACKED&#...

Non-Human Identities: How to Address the...

Leave a Comment Cancel reply

Recent News

New “LeakyLooker” Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Can the Security Platform Finally Deliver for the Mid-Market?