Microsoft highlights malware targeting Ukraine, government identifies suspected attackers

Surface Laptop 4 Amd 2021 Keyboard Lights
Surface Laptop 4 Amd 2021 Keyboard Lights (Image credit: Daniel Rubino / Windows Central)

What you need to know

  • Ukrainian organizations were recently struck by a wave of malware that affected those in the government, nonprofit, and IT sectors.
  • Microsoft posted a technical breakdown of the cyberattack's methodology, dissecting what went into it.
  • Serhiy Demedyuk, the deputy secretary of Ukraine's national security and defense council, stated that Belarus was the suspected perpetrator, with further comments from officials elaborating that Russia likely had some degree of involvement in the attack.
  • In response to the attack on Ukraine, Poland elevated its nationwide cybersecurity terror threat level.

Once in a while, Microsoft's security teams' operations cross paths with major world news. Such is the situation with the curious case of the malware attack on Ukrainian institutions, which defaced and crippled government websites as well as those of nonprofits and IT organizations.

Microsoft has a security blog post (opens in new tab) analyzing the attacks in depth, in the event you want to see what Redmond has made of the malware thus far. It's not all old hat, either. "During our investigation, we found a unique malware capability being used in intrusion attacks against multiple victim organizations in Ukraine," says the post, indicating special malicious software was utilized specifically for this attack sweep. Microsoft indicates its investigation is ongoing, so findings may evolve as time goes on.

And as for the perpetrators of the attack, Serhiy Demedyuk, the deputy secretary of Ukraine's national security and defense council, disclosed that the cybercriminals were a hacker group with ties to Belarusian intelligence (via Reuters). Officials then further claimed Russia was likely linked to the attack as well.

In response to the situation, Poland bumped up its nationwide cybersecurity terror threat level, albeit on a preventative basis rather than a reactive one.

Should the Russian element prove to be true, it may not come as a surprise to many. After all, 2021 was the year of Russian hackers, according to Microsoft.

Robert Carnevale is the News Editor for Windows Central. He's a big fan of Kinect (it lives on in his heart), Sonic the Hedgehog, and the legendary intersection of those two titans, Sonic Free Riders. He is the author of Cold War 2395. Have a useful tip? Send it to robert.carnevale@futurenet.com.

6 Comments
  • "Should the Russian element prove to be true, it may not come as a surprise to many. After all, 2021 was the year of Russian hackers, according to Microsoft." There's also the Russian troops amassed along the Ukrainian border.
  • There are Russian troops IN RUSSIA.
    There are UK/US/CA troops IN UKRAINE. How would an American feel about Russian troops in Mexico or Canada??
  • Now you sound like Tucker. The Russian troops are in the Ukraine. You know the part that they illegally annexed?
  • LOL #Vault7 This is the CIA false flag that they projected onto Russia when they warned that Russia would do a false flag.
  • Literally no one other than Putin is trying to stir things up. The country is basically failing on so many levels and this lets him rile things up so he can look like a hero.
  • The first "false flag" comment I've seen in my time at WC! Bucket list: Checked.