Tuesday, May 13, 2025
Follow us On Linkedin
HomeMalwareNew Destructive Malware Targeting Government Agencies & Organizations

New Destructive Malware Targeting Government Agencies & Organizations

Malware

Published on

By Balaji
New Destructive Malware Targeting Government Agencies & Organizations

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

The cybersecurity researchers at Microsoft have recently reported that on the websites of some Ukrainian organizations and government agencies, hackers are constantly attacking with malicious software and malware.

It has been noted that the malicious software used looks like ransomware, but without a ransom mechanism. In short, it is used by the attackers to disrupt the affected systems only, not to demand any ransom payments.

While since January 13 Microsoft has recorded similar software and malware on dozens of systems. However, till now in the group that is behind these attacks, there is no substantial overlap between the unique characteristics has been detected.

- Advertisement - Google News

But, Microsoft has confirmed that they are still continuing their investigation and tracking each activity.  

Affected organizations

Due to these attacks and malware, several organizations were affected and here they are:-

  • Government agencies that provide critical executive branch or emergency response functions.
  • An IT firm that operates websites for clients of both the public and private sectors.
  • Websites Government agencies.

Here’ what Microsoft stated:-

“We are aware of current geopolitical developments in Ukraine and other regions. But, we have also notified each of the impacted organizations we have identified so far, partnered with other cybersecurity providers to share what we know, and notified appropriate government agencies in the United States and elsewhere.”

But, Microsoft has already alerted all the affected organizations, and strongly recommended them to execute a brief investigation of the incident. As of now, there are no accusations or speculation have been confirmed about who is behind these attacks.

Moreover, after identifying this malware Microsoft has promptly deployed all the necessary protections into the following products:-

  • Microsoft 365 Defender Endpoint Detection (EDR)
  • Anti-virus (AV) protections

While so far there no such trace has been detected or reported about the exploitation of this vulnerability in the products and services of Microsoft.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Cyber Security News

Microsoft Patch Tuesday May 2025 Released With the Fixes for 72 Flaws With 5 Actively Exploited 0-Day

Microsoft has released its May 2025 Patch Tuesday updates, addressing 72 security vulnerabilities across...
Cyber Security News

Ivanti Released Security Updates to Fix for the Mutiple RCE Vulnerabilities – Patch Now

Ivanti, a leading enterprise software provider, has released critical security updates addressing vulnerabilities across...
Cyber Security News

Fortinet FortiVoice Zero-day Vulnerability Actively Exploited in The Wild

A critical stack-based buffer overflow vulnerability (CWE-121) has been discovered in multiple Fortinet products,...
Cyber Attack

Ransomware Attacks Surge by 123% Amid Evolving Tactics and Strategies

The 2025 Third-Party Breach Report from Black Kite highlights a staggering 123% surge in...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

cyber security

Hackers Weaponize KeePass Password Manager to Spread Malware and Steal Passwords

Threat actors have successfully exploited the widely-used open-source password manager, KeePass, to spread malware...
cyber security

Researchers Uncover Remote IT Job Fraud Scheme Involving North Korean Nationals

The United States indicted fourteen North Korean nationals for orchestrating a sophisticated scheme to...
cyber security

Lumma Stealer Upgraded with PowerShell Tools and Advanced Evasion Techniques

Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved