Russian-linked hackers compromised email accounts of prosecutors and investigators across Ukraine over several months, with additional targeting reported in nearby NATO countries and the Balkans, according to data cited by Reuters and provided by the cyber threat researchers at Ctrl-Alt-Intel.

The report says the hackers gained access to at least 284 inboxes between September 2024 and March 2026, affecting prosecutors and law-enforcement bodies involved in investigations relevant to the defense and security services. The data indicates compromises included accounts tied to Ukraine’s Specialized Prosecutor’s Office in the Field of Defense, along with other units connected to anti-corruption work and asset recovery.

The cyber operation was attributed by the researchers to “Fancy Bear,” a Russian military hacking squad. Analysts cited in the reporting suggest the campaign may have sought information related to Russian spies under investigation, or targeted materials connected to Ukrainian officials.

Ukrainian officials told Reuters that the information theft claims were being checked, with some parties indicating no confirmed data loss at the time of comment. Security experts also frame such campaigns as part of a wider pattern of Russian cyber activity aimed at intelligence gathering and disruption across borders.