Ukraine's CERT-UA Warns of New Cyberattacks by Russian-Linked APT28 Using Signal

The Ukrainian Computer Emergency Response Team (CERT-UA) has issued an alert regarding a new cyberattack campaign conducted by the Russian-linked threat group APT28. This campaign utilizes messages from the Signal messaging app to deploy two new families of malware called BEARDSHELL and COVENANT. BEARDSHELL, written in C++, enables the download and execution of PowerShell scripts, as well as the upload of command execution results.