UAC-0102: Inside a Covert Espionage Operation Targeting Ukraine and Beyond

This intelligence report profiles UAC-0102 (GreenCube/UNC3707) as a stealthy, Russia-linked cyber espionage actor targeting Ukrainian government, military, and critical infrastructure sectors using targeted spear-phishing, lightweight modular backdoors, cloud-based command-and-control, and long-term persistence; it outlines observed TTPs, campaign evolution from 2021–2025, operational OPSEC practices, and defensive recommendations including email authentication, behavioral EDR, cloud monitoring, and asset segmentation.