Ukraine malware attack focused on destruction of data, not ransomware, says Microsoft

1 min. read

Published onJanuary 17, 2022

published onJanuary 17, 2022

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Over the weekend, theMicrosoft Security blog shared informationon a new destructive malware operation that has been targeting multiple government, non-profit, and information technology organizations in Ukraine, as tensions between that country and Russia continue to escalate.

The malware is presented as though it were a ransomware attack, offering a ransom note, a single Bitcoin wallet for payment, and a single Tox ID. However once an infected machine is powered down, instead of encrypting the Master Boot Record (MBR) for later recovery after a ransom is paid, as is typical, the malware instead simply destroys the MBR. The malware also targets a number of file types, overwriting files within a list of extensions.

Microsoft explains that these activities are unlike any “normal” ransomware attack, which are used to demand payments, and instead is intent on destructive activity.

Microsoft is and has been working with customers in Ukraine to assess their systems, and provides methods to identify systems that are compromised and help protect their data.

Microsoft has been pushing for more secure computer systems, releasing Windows 11 with a new set of security requirements as it continues to respond to ever increasing threats from ever more sophisticated attacks.

Kip Kniskern

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Kip Kniskern

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low#

Copilot in Outlook will generate personalized themes for you to customize the app#

Microsoft will raise the price of its 365 Suite to include AI capabilities#

Death Stranding Director’s Cut is now Xbox X|S at a huge discount#

Outlook will let users create custom account icons so they can tell their accounts apart easier#

Ukraine malware attack focused on destruction of data, not ransomware, says Microsoft#

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Ukraine malware attack focused on destruction of data, not ransomware, says Microsoft