The Computer Emergency Response Team of Ukraine (CERT-UA) has released information about a new phishing campaign This article explores hacked operation. . Threat actors known as UAC-0255 pretended to be the agency and sent emails on March 26 and 27, 2026.

The campaign went after a number of groups, such as state agencies, hospitals, cybersecurity companies, schools, banks, and software developers. A look at the fake website "cert-ua[. ]tech" showed that it was probably made with AI tools. The HTML source code also had a comment that said, "With Love, CYBER SERP."

It looks like the attack didn't do much damage. The agency's report says that only a few personal devices belonging to workers at different schools were hacked. This operation has affected more than 200,000 devices.

The group says they are not criminals and promises that what they do will not hurt regular people. They said that the group got a full dump of Cipher's servers, which included client databases and the source code for CIPS products, among other things. Cyber Serp said on their website that unauthorized users broke into the security of one of their tech companies' employees and got into a limited project without any private data.

Cipher's systems stayed up and running even after this breach.