Ukraine’s DELTA military system users were the target of a phishing attack that distributed infostealers identified as FateGrab and StealDeal. Email and instant messages with fake warnings to update the Delta certificates were used to lure victims. Upon execution, StealDeal and FateGrab malware would steal Internet browser data and passwords stored on the local browser.