A Ukrainian-based threat actor is spearphishing Russians who are using services that have been banned by the Kremlin.

Threatpost