Russia-based Gamaredon hacking group has targeted government, military, non-government organizations (NGO), judiciary, law enforcement, and non-profit organizations in Ukraine over the past six months. Windows maker’s Threat Intelligence Center (MSTIC) is tracking the cluster under the moniker ACTINIUM (previously as DEV-0157), sticking to its tradition of identifying nation-state activities by chemical element names. The attacks primarily leverage spear-phishing emails as an initial access vector, with the messages carrying malware-laced macro attachments.”]
Source: https://thehackernews.com/2022/02/microsoft-uncovers-new-details-of.html