Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

Operation MacroMaze

APT28 targets Western and Central Europe with document beacons and webhook exfiltration

Cybercrime, News, Research

February 24, 2026

APT28 ran Operation MacroMaze from September 2025 to January 2026 targeting Western and Central Europe, using spear-phishing documents that beacon to webhook hosts and exfiltrate command output through browser-based HTML forms.

About
Editorial Policy
Privacy
Contact