Date of report
- December 2016
Affiliations
- Believed to be the work of APT 28
A threat actor compromised a mobile app that Ukrainian artillery units used to assist with targeting. The compromise of the app is believed to have allowed the threat actor to monitor the movements of Ukrainian units in order to facilitate military targeting by Russian-backed rebels in eastern Ukraine.
Suspected victims
- Ukraine Armed Forces
Suspected state sponsor
- Russian Federation
Type of incident
- Espionage
Target category
- Military
Victim government reaction
- Yes
Policy response