Post #8810

Ukraine’s CERT-UA reports attacks on hospitals and government using AGINGFLY to steal browser and WhatsApp data. Phishing triggers LNK → HTA via mshta.exe, deploying RAVENSHELL for remote control, credential theft, and lateral movement. 🔗 Full attack chain and tools used → https://thehackernews.com/2026/04/uac-0247-targets-ukrainian-clinics-and.html