| Date | Source | Threat(s) | URL |
|---|---|---|---|
| 2 December | PWC | Blue Callisto orbits around US Laboratories in 2022 | pwc.com |
| 5 December | Recorded Future | Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations | recordedfuture.com |
| 5 December | Sekoia | Calisto show interests into entities involved in Ukraine war support | sekoia.com |
| 8 December | CERT-UA | Cyber attack on government organizations using the theme of Iranian Shahed-136 kamikaze drones and DolphinCape malware (CERT-UA#5683) | cert.gov.ua |
| 10 December | Mandiant | Trojanized Windows 10 Operating System Installers Targeted Ukrainian Government | mandiant.com |
| 12 December | Carnegie Endowment | Cyber Operations in Ukraine: Russia’s Unmet Expectations | carnegieendowment.org |
| 16 December | Carnegie Endowment | Russia’s Wartime Cyber Operations in Ukraine: Military Impacts, Influences, and Implications | carnegieendowment.org |
| 18 December | CERT-UA | Cyber attack on DELTA system users using RomCom/FateGrab/StealDeal malware (CERT-UA#5709) | cert.gov.ua |
| 19 December | Carnegie Endowment | What the Russian Invasion Reveals About the Future of Cyber Warfare | carnegieendowment.org |
| 20 December | Unit42 | Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine | unti42.paloaltonetworks.com |
| 26 December | Telegraph | German double agent ‘passed Ukraine intelligence to Russia’ | telegraph.co.uk |
| 30 December | Ukrainian Govt | CERT-UA has processed over 2,000 cyberattacks against Ukraine year to date | cip.gov.ua |