NEW AGINGFLY MALWARE TARGETS UKRAINE GOVT, HOSPITALS

AgingFly represents a focused threat against critical infrastructure in Ukraine. The malware targets authentication data, which attackers can use to gain unauthorized access to sensitive systems and accounts. Chromium-based browsers—including Chrome, Edge, and Brave—store login credentials that the malware extracts. WhatsApp credentials are also targeted, potentially enabling account takeovers and lateral movement into compromised networks. The attacks on government and hospital networks suggest the malware operators are pursuing espionage or disruption objectives. Healthcare facilities are particularly concerning targets, as breaches can disrupt patient care and access to medical records. No attribution has been publicly confirmed. Organizations in affected regions should implement browser isolation, disable credential storage features, and enforce multi-factor authentication to mitigate risk from similar threats.