From 72cf2bf592e7fcbd2beeeaf72a65fbb6ecd27169 Mon Sep 17 00:00:00 2001
From: blackorbird <14833213+blackorbird@users.noreply.github.com>
Date: Tue, 20 Feb 2024 14:56:39 +0800
Subject: [PATCH] Create readme.md

---
 Winter Vivern/readme.md | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 Winter Vivern/readme.md

diff --git a/Winter Vivern/readme.md b/Winter Vivern/readme.md
new file mode 100644
index 0000000..ebf5fd4
--- /dev/null
+++ b/Winter Vivern/readme.md	
@@ -0,0 +1,22 @@
+Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign
+https://www.recordedfuture.com/russia-aligned-tag-70-targets-european-government-and-military-mail
+
+Winter Vivern exploits zero-day vulnerability in Roundcube Webmail servers
+
+https://www.welivesecurity.com/en/eset-research/winter-vivern-exploits-zero-day-vulnerability-roundcube-webmail-servers/
+
+Exploitation is a Dish Best Served Cold: Winter Vivern Uses Known Zimbra Vulnerability to Target Webmail Portals of NATO-Aligned Governments in Europe
+
+https://www.proofpoint.com/us/blog/threat-insight/exploitation-dish-best-served-cold-winter-vivern-uses-known-zimbra-vulnerability
+
+Winter Vivern | Uncovering a Wave of Global Espionage
+
+https://www.sentinelone.com/labs/winter-vivern-uncovering-a-wave-of-global-espionage/
+
+UAC-0114 Group aka Winter Vivern Attack Detection: Hackers Launch Phishing Campaigns Targeting Government Entities of Ukraine and Poland
+
+https://socprime.com/blog/uac-0114-group-aka-winter-vivern-attack-detection-hackers-launch-malicious-phishing-campaigns-targeting-government-entities-of-ukraine-and-poland/
+
+Winter Vivern: A Look At Re-Crafted Government MalDocs Targeting Multiple Languages
+
+https://www.domaintools.com/resources/blog/winter-vivern-a-look-at-re-crafted-government-maldocs/