Signal

Surge in targeted malware campaigns across europe and MENA region

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-02-24 14:21 UTCUpdated 2026-02-25 00:06 UTC

rss

macromuddywater_apt

Source links open

Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.

Back Evidence (4)Get the free brief by email Start free trial

No card needed for the free brief.

Evidence trail (top sources)

top sources (2 domains)

2 top sources shown

New APT28 campaign hits Europe with macro malware

SC Media · News · scworld.com · 2026-02-25 00:06 UTC

UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware

The Hacker News · News · thehackernews.com · 2026-02-24 14:21 UTC

limited source diversity in top sources

View all evidence

Overview

Recent cybersecurity incidents reveal a rise in targeted malware campaigns, including MuddyWater's Operation Olalampo in the MENA region and APT28's macro malware attacks in Europe. UAC-0050 has targeted a European financial institution, while XWorm malware exploits ordinary emails for infections.

Score total

1.07

Momentum 24h

Posts

Origins

Source types

Duplicate ratio

Why now

Recent attacks indicate a shift in focus for certain threat actors, expanding their targets.
The rise in phishing and macro malware tactics highlights the need for enhanced user awareness.
Timely reporting on these incidents can aid organizations in bolstering their defenses.

Why it matters

Increased malware campaigns pose significant risks to organizations in targeted regions.
Understanding these threats helps in developing effective cybersecurity strategies.
The evolving tactics of threat actors necessitate ongoing vigilance and adaptation in security measures.

LLM analysis

Topic mix: lowPromo risk: lowSource quality: medium

Recurring claims

MuddyWater APT launches Operation Olalampo with new malware targeting MENA region.
New APT28 campaign hits Europe with macro malware.
UAC-0050 targets European financial institution with spoofed domain and RMS malware.
XWorm malware campaign leverages mundane emails for PC infections.

How sources frame it

SC Media: neutral
The Hacker News: neutral

All evidence

New APT28 campaign hits Europe with macro malware

SC Media · scworld.com · 2026-02-25 00:06 UTC

UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware

The Hacker News · thehackernews.com · 2026-02-24 14:21 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 2Origin domains: 2Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 2 / 0

Top publishers (this list)

SC Media (1)
The Hacker News (1)

Top origin domains (this list)

scworld.com (1)
thehackernews.com (1)