Skip to content
The Nexus
DossierENTITY

FrostyNeighbor

Coverage of FrostyNeighbor in the Nexus archive.

Earliest in view: May 14 · 14:00 UTCMost recent: May 14 · 16:59 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYMay 14 · 16:59 UTCDARK READING
    'FrostyNeighbor' APT Carefully Targets Govt Orgs in Poland, Ukraine

    The Belarussian nation-state threat group 'FrostyNeighbor' APT is targeting government organizations in Poland and Ukraine through spear-phishing payloads aimed at espionage. The attackers uniquely fingerprint victims before delivering the payloads. This campaign is part of the group's latest efforts.

  • SECURITYMay 14 · 14:00 UTCTHE HACKER NEWS
    Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

    The Ghostwriter threat group has targeted Ukrainian government organizations with geofenced PDF phishing and Cobalt Strike attacks. Ghostwriter, also known as FrostyNeighbor, PUSHCHA, Storm-0257, TA445, and UAC‑0057, has been active since at least 2016. The group is aligned with Belarus and has been linked to cyber espionage and influence operations.

FrostyNeighbor · Dossier · The Nexus