The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new cyber attack campaign by the Russia-linked APT28 (aka UAC-0001) threat actors using Signal chat messages to deliver two new malware families dubbed BEARDSHELL and COVENANT. BEARDSHELL, per CERT-UA, is written in C++ and offers the ability to download and execute PowerShell scripts, as well as upload the results of the
![]()
source https://thehackernews.com/2025/06/apt28-uses-signal-chat-to-deploy.html
source https://thehackernews.com/2025/06/apt28-uses-signal-chat-to-deploy.html