Date of report
- May 2024
Affiliations
Cloudfare’s security team identified a phishing campaign using Cloudflare Workers (a Cloudfare product) and GitHub. FlyingYeti distributed files that ostensibly helped users adapt to the end of a Ukrainian moratorium on evictions and termination of utility services, but which really installed malware on the target system.
Suspected victims
- Ukrainian citizens
Suspected state sponsor
- Russian Federation
Type of incident
- Espionage
Target category
- Civil society
Victim government reaction
- Yes
Policy response
Suspected state sponsor response