Microsoft says destructive malware seen in Ukrainian government agency systems
Microsoft Corp said in a blog post on Saturday that it had observed destructive malware in the systems of several Ukrainian government agencies and organizations that work closely with the Ukrainian government.
Microsoft says victims of this malware include Ukrainian government agencies that provide emergency response functions or critical law enforcement branches.
Also affected is an information technology company that manages websites for public and private sector clients, including government agencies, whose websites were recently removed. Microsoft did not identify the IT company involved.
The US software giant, which first detected the malware on Thursday, said the malware attacks did not take advantage of any vulnerabilities in Microsoft products and services.
A massive cyberattack hit government websites on Thursday night, warning Ukrainians to “fear and expect the worst”, rendering some websites inaccessible. on Friday morning and prompted Ukraine to open an investigation.
Reuters reported on Saturday that Ukraine suspected a hacker group with ties to Belarusian intelligence had carried out a cyberattack and that the group used malware similar to the one used. by a group linked to Russian intelligence, according to a senior Ukrainian security official.
The malware, disguised as ransomware, will render infected computer systems inoperable if activated by an attacker, Microsoft said, adding that the company will continue to work with the community. Cybersecurity to identify and assist targets and victims.