Destructive Microsoft malware found in attacks targeting Ukraine

tech.hindustantimes.com:

Microsoft Corp. said it has observed “destructive malware” in systems belonging to several Ukrainian government agencies and organizations that work with the authorities.  “The malware is disguised as ransomware but, if activated by the attacker, would render the infected computer system inoperable,” the company said in a statement. “We’re sharing this information to help others in the cybersecurity community look out for and defend against these attacks.”

Microsoft hasn’t identified any groups behind the attacks and is continuing its analysis. The malware was first detected on Jan. 13, the company said. 

“We have already built and deployed protections for this malware into Microsoft 365 Defender Endpoint Detection and Anti-virus protections wherever these products are deployed, both on-premises and in the cloud,” it said. “We see no indication so far that these attacks utilize any vulnerability in Microsoft products and services.”

(AFP) The United States on Friday accused Russia of sending saboteurs trained in explosives to stage a pretext to invade Ukraine, where government websites were knocked out in a cyberattack linked to Moscow.

The allegations and incident mark a striking new escalation in tensions over Ukraine, just after a week of talks between the West and Russia that sought a diplomatic solution.

Russia has amassed tanks, artillery and tens of thousands of troops near the border of Ukraine as it demands guarantees that its neighbour will never join NATO -- which on Friday announced new cyber cooperation with Kyiv in response to the attack.

Detailing intelligence findings, the White House said that Russia was "laying the groundwork to have the option of fabricating a pretext for invasion" by blaming Ukraine.

"We have